Vedge 100 Firmware@* Security Vulnerabilities and Issues — Vedge 100 Firmware@* CVE List

Lucene search

CiscoVedge 100 Firmware*

7 matches found

CVE•added 2021/05/06 1:15 p.m.•62 views

CVE-2021-1514

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with Administrator privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certain CLI commands. An attac...

7.8CVSS6.1AI score0.00071EPSS

CVE•added 2018/10/05 2:29 p.m.•53 views

CVE-2018-0434

A vulnerability in the Zero Touch Provisioning feature of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data by using an invalid certificate. The vulnerability is due to insufficient certificate validation by the affected software...

7.4CVSS7.4AI score0.00125EPSS

CVE•added 2018/10/05 2:29 p.m.•41 views

CVE-2018-0432

A vulnerability in the error reporting feature of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to gain elevated privileges on an affected device. The vulnerability is due to a failure to properly validate certain parameters included within the error reporting application ...

9CVSS8.9AI score0.01736EPSS

CVE•added 2019/01/24 3:29 p.m.•40 views

CVE-2019-1646

A vulnerability in the local CLI of the Cisco SD-WAN Solution could allow an authenticated, local attacker to escalate privileges and modify device configuration files. The vulnerability exists because user input is not properly sanitized for certain commands at the CLI. An attacker could exploit t...

7.8CVSS7.8AI score0.00098EPSS

CVE•added 2019/01/24 3:29 p.m.•40 views

CVE-2019-1650

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the save command in the CLI of the affected software. An attacke...

9CVSS9AI score0.01769EPSS

CVE•added 2018/10/05 2:29 p.m.•37 views

CVE-2018-0433

A vulnerability in the command-line interface (CLI) in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability ...

7.8CVSS7.7AI score0.00098EPSS

CVE•added 2019/01/24 3:29 p.m.•36 views

CVE-2019-1648

A vulnerability in the user group configuration of the Cisco SD-WAN Solution could allow an authenticated, local attacker to gain elevated privileges on an affected device. The vulnerability is due to a failure to properly validate certain parameters included within the group configuration. An atta...

7.8CVSS7.7AI score0.00063EPSS