Sd-wan Security Vulnerabilities and Issues — Sd-wan CVE List

Lucene search

CiscoSd-wan

4 matches found

CVE•added 2020/10/08 5:15 a.m.•79 views

CVE-2020-3536

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management interface does not properly ...

6.4CVSS5.5AI score0.00158EPSS

CVE•added 2022/09/30 7:15 p.m.•59 views

CVE-2022-20930

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite and possibly corrupt files on an affected system. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by injecting arbitrary commands th...

6.7CVSS6.6AI score0.00072EPSS

CVE•added 2021/09/23 3:15 a.m.•47 views

CVE-2021-1589

A vulnerability in the disaster recovery feature of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain unauthorized access to user credentials. This vulnerability exists because access to API endpoints is not properly restricted. An attacker could exploit this vulne...

6.5CVSS6.5AI score0.00358EPSS

CVE•added 2020/11/06 7:15 p.m.•46 views

CVE-2020-27128

A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to write arbitrary files to an affected system. The vulnerability is due to improper validation of requests to APIs. An attacker could exploit this vulnerability by sendi...

6.5CVSS6.5AI score0.02417EPSS