Cisco

Catalyst Sd-wan Manager

80 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2020-26064

  • EPSS 0.09%
  • Veröffentlicht 04.08.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 05:19:07

A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML Ext...

9.1

CVE-2023-20214

  • EPSS 0.15%
  • Veröffentlicht 03.08.2023 22:15:11
  • Zuletzt bearbeitet 21.11.2024 07:40:54

A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software could allow an unauthenticated, remote attacker to gain read permissions or limited write permissions to the configuration of an affected Cisco...

6

CVE-2023-20098

  • EPSS 0.06%
  • Veröffentlicht 09.05.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:40:32

A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. A...

5.3

CVE-2022-20830

  • EPSS 0.28%
  • Veröffentlicht 10.10.2022 21:15:10
  • Zuletzt bearbeitet 21.11.2024 06:43:38

A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vManage could allow an unauthenticated, remote attacker to access the GUI of Cisco SD-AVC without authentication. This vulnerab...

6.7

CVE-2022-20930

  • EPSS 0.08%
  • Veröffentlicht 30.09.2022 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:50

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite and possibly corrupt files on an affected system. This vulnerability is due to insufficient input validation. An attacker could exploit this...

7.8

CVE-2022-20775

Exploit
  • EPSS 0.1%
  • Veröffentlicht 30.09.2022 19:15:11
  • Zuletzt bearbeitet 21.11.2024 06:43:31

Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could...

8.8

CVE-2022-20696

  • EPSS 0.22%
  • Veröffentlicht 08.09.2022 13:15:08
  • Zuletzt bearbeitet 21.11.2024 06:43:20

A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also access the messaging service ports on an affected system. Th...

4.9

CVE-2022-20734

  • EPSS 0.06%
  • Veröffentlicht 04.05.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:43:26

A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local attacker to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker with neta...

8.5

CVE-2022-20739

  • EPSS 0.12%
  • Veröffentlicht 15.04.2022 15:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:27

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a...

6.5

CVE-2022-20747

  • EPSS 0.41%
  • Veröffentlicht 15.04.2022 15:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:28

A vulnerability in the History API of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain access to sensitive information on an affected system. This vulnerability is due to insufficient API authorization checking on t...