CVE-2026-20129
- EPSS 0.72%
- Veröffentlicht 25.02.2026 16:14:09
- Zuletzt bearbeitet 04.03.2026 21:16:28
A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain access to an affected system as a user who has the netadmin role. The vulnerability is due to improper aut...
CVE-2026-20126
- EPSS 0.3%
- Veröffentlicht 25.02.2026 16:13:58
- Zuletzt bearbeitet 04.03.2026 21:21:49
A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with low privileges to gain root privileges on the underlying operating system. This vulnerability is due to an insufficient user authentication mechanis...
CVE-2026-20133
- EPSS 10.25%
- Veröffentlicht 25.02.2026 16:13:56
- Zuletzt bearbeitet 22.04.2026 16:56:21
A vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker wi...
CVE-2025-20147
- EPSS 0.26%
- Veröffentlicht 07.05.2025 17:19:01
- Zuletzt bearbeitet 31.07.2025 18:14:54
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a stored cross-site scripting attack (XSS) on an affected system. ...
CVE-2025-20216
- EPSS 0.28%
- Veröffentlicht 07.05.2025 17:18:52
- Zuletzt bearbeitet 29.07.2025 13:47:28
A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker to inject HTML into the browser of an authenticated user. This vulnerability is due to improper s...
CVE-2025-20187
- EPSS 1.25%
- Veröffentlicht 07.05.2025 17:18:31
- Zuletzt bearbeitet 04.08.2025 14:29:09
A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to improper ...
CVE-2025-20122
- EPSS 0.13%
- Veröffentlicht 07.05.2025 17:18:27
- Zuletzt bearbeitet 31.07.2025 18:14:15
A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to gain privileges of the root user on the underlying operating system. This vulnerability is due to insuffici...
CVE-2025-20213
- EPSS 0.14%
- Veröffentlicht 07.05.2025 17:18:23
- Zuletzt bearbeitet 04.08.2025 14:27:43
A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. To exploit this vulnerability, the a...
CVE-2025-20157
- EPSS 0.24%
- Veröffentlicht 07.05.2025 17:17:01
- Zuletzt bearbeitet 04.08.2025 14:46:12
A vulnerability in certificate validation processing of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticated, remote attacker to gain access to sensitive information. This vulnerability is due to improper va...
CVE-2020-26066
- EPSS 0.59%
- Veröffentlicht 18.11.2024 17:15:09
- Zuletzt bearbeitet 04.08.2025 14:14:53
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML...