Cisco

Catalyst Sd-wan Manager

86 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2026-20122

Warnung Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 25.02.2026 16:14:21
  • Zuletzt bearbeitet 04.03.2026 21:25:22

A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary files on the local file system. To exploit this vulnerability, the attacker must have valid read-only credentials with AP...

10

CVE-2026-20127

Warnung Medienbericht
  • EPSS 0.86%
  • Veröffentlicht 25.02.2026 16:14:20
  • Zuletzt bearbeitet 26.02.2026 16:20:02

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to bypass authentication and obtain...

7.5

CVE-2026-20128

Warnung Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 25.02.2026 16:14:12
  • Zuletzt bearbeitet 20.03.2026 22:16:25

A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain DCA user privileges on an affected system. This vulnerability is due to the presence of a credentia...

9.8

CVE-2026-20129

Warnung Medienbericht
  • EPSS 0.16%
  • Veröffentlicht 25.02.2026 16:14:09
  • Zuletzt bearbeitet 04.03.2026 21:16:28

A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain access to an affected system as a user who has the netadmin role. The vulnerability is due to improper aut...

7.8

CVE-2026-20126

Warnung Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 25.02.2026 16:13:58
  • Zuletzt bearbeitet 04.03.2026 21:21:49

A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with low privileges to gain root privileges on the underlying operating system. This vulnerability is due to an insufficient user authentication mechanis...

7.5

CVE-2026-20133

Warnung Medienbericht
  • EPSS 0.06%
  • Veröffentlicht 25.02.2026 16:13:56
  • Zuletzt bearbeitet 04.03.2026 21:20:11

A vulnerability in Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to view sensitive information on an affected system. This vulnerability is due to insufficient file system access restrictions. An attacker could expl...

5.4

CVE-2025-20147

  • EPSS 0.12%
  • Veröffentlicht 07.05.2025 17:19:01
  • Zuletzt bearbeitet 31.07.2025 18:14:54

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a stored cross-site scripting attack (XSS) on an affected system.  ...

4.3

CVE-2025-20216

  • EPSS 0.13%
  • Veröffentlicht 07.05.2025 17:18:52
  • Zuletzt bearbeitet 29.07.2025 13:47:28

A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker to inject HTML into the browser of an authenticated user. This vulnerability is due to improper s...

6.5

CVE-2025-20187

  • EPSS 1.02%
  • Veröffentlicht 07.05.2025 17:18:31
  • Zuletzt bearbeitet 04.08.2025 14:29:09

A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to improper ...

7.8

CVE-2025-20122

  • EPSS 0.06%
  • Veröffentlicht 07.05.2025 17:18:27
  • Zuletzt bearbeitet 31.07.2025 18:14:15

A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to gain privileges of the root user on the underlying operating system. This vulnerability is due to insuffici...