2 matches found
CVE-2022-20716
CVE-2022-20716 concerns Cisco SD-WAN Software where an authenticated, local attacker can gain escalated privileges due to improper access control on files. The root cause is file-level access control weaknesses within the CLI-facing components, enabling an attacker to modify certain files on the ...
CVE-2022-20775
Cisco CVE-2022-20775 affects the Cisco Catalyst SD-WAN Controller/Manager CLI. It is a local, authenticated privilege-escalation in the CLI caused by improper access controls on commands, enabling an attacker to run commands as root. Cisco released updates addressing this, with no workarounds. Af...