Cisco

Catalyst Sd-wan Manager

80 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2021-1470

  • EPSS 0.07%
  • Veröffentlicht 15.11.2024 17:15:07
  • Zuletzt bearbeitet 24.06.2025 14:35:38

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to improper input validation ...

5.4

CVE-2021-1466

  • EPSS 0.14%
  • Veröffentlicht 15.11.2024 17:15:07
  • Zuletzt bearbeitet 04.08.2025 14:37:51

A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause a buffer overflow on an affected system, resulting in a denial of service (DoS) condition. The vulnerability is d...

5

CVE-2021-1464

  • EPSS 0.26%
  • Veröffentlicht 15.11.2024 17:15:07
  • Zuletzt bearbeitet 04.08.2025 14:36:14

A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain restricted access to the configuration information of an affected system. This vulnerability exists because...

8.8

CVE-2022-20655

  • EPSS 0.54%
  • Veröffentlicht 15.11.2024 16:15:20
  • Zuletzt bearbeitet 18.11.2024 17:11:56

A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient validation of a process argument on an a...

5.4

CVE-2024-20475

  • EPSS 0.11%
  • Veröffentlicht 25.09.2024 17:15:17
  • Zuletzt bearbeitet 03.10.2024 17:49:17

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. Th...

6.5

CVE-2023-20261

  • EPSS 0.12%
  • Veröffentlicht 18.10.2023 17:15:08
  • Zuletzt bearbeitet 21.11.2024 07:41:01

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to improper validation of parameters that are sent to the w...

9.8

CVE-2023-20252

  • EPSS 0.52%
  • Veröffentlicht 27.09.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:40:59

A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote attacker to gain unauthorized access to the application as an arbitrary user. This vulnerability...

5.5

CVE-2023-20253

  • EPSS 0.01%
  • Veröffentlicht 27.09.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:41:00

A vulnerability in the command line interface (cli) management interface of Cisco SD-WAN vManage could allow an authenticated, local attacker to bypass authorization and allow the attacker to roll back the configuration on vManage controllers and edg...

7.5

CVE-2023-20262

  • EPSS 0.32%
  • Veröffentlicht 27.09.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:41:01

A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from contin...

6.5

CVE-2020-26065

  • EPSS 0.28%
  • Veröffentlicht 04.08.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 05:19:08

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerabilit...