Vedge 100b Firmware Security Vulnerabilities and Issues — Vedge 100b Firmware CVE List

Lucene search

CiscoVedge 100b Firmware

10 matches found

CVE•added 2021/05/06 1:15 p.m.•76 views

CVE-2021-1513

A vulnerability in the vDaemon process of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to cause a device to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient handling of malformed packets. An attacker could exploit this vuln...

7.8CVSS7.5AI score0.00818EPSS

CVE•added 2021/06/04 5:15 p.m.•73 views

CVE-2021-1528

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges on an affected system. This vulnerability exists because the affected software does not properly restrict access to privileged processes. An attacker could exploit this vulne...

7.8CVSS7.6AI score0.00057EPSS

CVE•added 2021/05/06 1:15 p.m.•60 views

CVE-2021-1514

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with Administrator privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certain CLI commands. An attac...

7.8CVSS6.1AI score0.00071EPSS

CVE•added 2018/07/18 11:29 p.m.•46 views

CVE-2018-0344

A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient inpu...

7.2CVSS7.3AI score0.00372EPSS

CVE•added 2021/05/06 1:15 p.m.•44 views

CVE-2021-1510

Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an attacker to execute arbitrary code as the root user or cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

7.5CVSS7.9AI score0.00912EPSS

CVE•added 2018/07/18 11:29 p.m.•43 views

CVE-2018-0342

A vulnerability in the configuration and monitoring service of the Cisco SD-WAN Solution could allow an authenticated, local attacker to execute arbitrary code with root privileges or cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incomplete bounds chec...

7.2CVSS7.3AI score0.00079EPSS

CVE•added 2018/07/18 11:29 p.m.•40 views

CVE-2018-0351

A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability ...

7.8CVSS7.5AI score0.00098EPSS

CVE•added 2018/07/18 11:29 p.m.•37 views

CVE-2018-0347

A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vul...

7.8CVSS7.6AI score0.00098EPSS

CVE•added 2021/05/06 1:15 p.m.•37 views

CVE-2021-1511

7.5CVSS7.5AI score0.008EPSS

CVE•added 2018/07/18 11:29 p.m.•34 views

CVE-2018-0346

A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incorrect bounds checks for certain values in packets that are sent to ...

7.8CVSS7.8AI score0.00477EPSS