Cisco

Catalyst Sd-wan Manager

91 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.6

CVE-2026-20224

  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 16:08:46
  • Zuletzt bearbeitet 14.05.2026 17:19:57

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system. The attacker does not need to have valid user cred...

5.4

CVE-2026-20210

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 16:08:46
  • Zuletzt bearbeitet 14.05.2026 17:19:57

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to modify configurations and perform unauthorized actions on an affected system. This...

5.4

CVE-2026-20209

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 16:08:26
  • Zuletzt bearbeitet 14.05.2026 17:19:57

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low to high and perform actions as a high-privileged us...

10

CVE-2026-20182

Trending CVE
Warnung Medienbericht
  • EPSS 37.95%
  • Veröffentlicht 14.05.2026 16:08:25
  • Zuletzt bearbeitet 15.05.2026 12:45:53

May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the was disclosed in February 2026. This new advisory is for a new vulnerability in the control connection handshaking....

5.4

CVE-2026-20108

  • EPSS 0.04%
  • Veröffentlicht 25.03.2026 16:16:14
  • Zuletzt bearbeitet 26.03.2026 15:13:15

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. This vulnera...

5.4

CVE-2026-20122

Warnung Medienbericht
  • EPSS 1.74%
  • Veröffentlicht 25.02.2026 16:14:21
  • Zuletzt bearbeitet 21.04.2026 11:59:56

A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary files on the local file system. To exploit this vulnerability, the attacker must have valid read-only credentials with AP...

10

CVE-2026-20127

Warnung Medienbericht
  • EPSS 58.95%
  • Veröffentlicht 25.02.2026 16:14:20
  • Zuletzt bearbeitet 26.02.2026 16:20:02

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to bypass authentication and obtain...

7.5

CVE-2026-20128

Warnung Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 25.02.2026 16:14:12
  • Zuletzt bearbeitet 21.04.2026 12:48:20

A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain DCA user privileges on an affected system. This vulnerability is due to the presence of a credentia...

9.8

CVE-2026-20129

Warnung Medienbericht
  • EPSS 0.07%
  • Veröffentlicht 25.02.2026 16:14:09
  • Zuletzt bearbeitet 04.03.2026 21:16:28

A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain access to an affected system as a user who has the netadmin role. The vulnerability is due to improper aut...

7.8

CVE-2026-20126

Warnung Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 25.02.2026 16:13:58
  • Zuletzt bearbeitet 04.03.2026 21:21:49

A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with low privileges to gain root privileges on the underlying operating system. This vulnerability is due to an insufficient user authentication mechanis...