Cisco

Catalyst Sd-wan Manager

80 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2021-1470

  • EPSS 0.07%
  • Published 15.11.2024 17:15:07
  • Last modified 24.06.2025 14:35:38

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to improper input validation ...

5.4

CVE-2021-1466

  • EPSS 0.14%
  • Published 15.11.2024 17:15:07
  • Last modified 04.08.2025 14:37:51

A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause a buffer overflow on an affected system, resulting in a denial of service (DoS) condition. The vulnerability is d...

5

CVE-2021-1464

  • EPSS 0.26%
  • Published 15.11.2024 17:15:07
  • Last modified 04.08.2025 14:36:14

A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain restricted access to the configuration information of an affected system. This vulnerability exists because...

8.8

CVE-2022-20655

  • EPSS 0.54%
  • Published 15.11.2024 16:15:20
  • Last modified 18.11.2024 17:11:56

A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient validation of a process argument on an a...

5.4

CVE-2024-20475

  • EPSS 0.11%
  • Published 25.09.2024 17:15:17
  • Last modified 03.10.2024 17:49:17

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. Th...

6.5

CVE-2023-20261

  • EPSS 0.12%
  • Published 18.10.2023 17:15:08
  • Last modified 21.11.2024 07:41:01

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to improper validation of parameters that are sent to the w...

9.8

CVE-2023-20252

  • EPSS 0.52%
  • Published 27.09.2023 18:15:11
  • Last modified 21.11.2024 07:40:59

A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote attacker to gain unauthorized access to the application as an arbitrary user. This vulnerability...

5.5

CVE-2023-20253

  • EPSS 0.01%
  • Published 27.09.2023 18:15:11
  • Last modified 21.11.2024 07:41:00

A vulnerability in the command line interface (cli) management interface of Cisco SD-WAN vManage could allow an authenticated, local attacker to bypass authorization and allow the attacker to roll back the configuration on vManage controllers and edg...

7.5

CVE-2023-20262

  • EPSS 0.32%
  • Published 27.09.2023 18:15:11
  • Last modified 21.11.2024 07:41:01

A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from contin...

6.5

CVE-2020-26065

  • EPSS 0.28%
  • Published 04.08.2023 21:15:10
  • Last modified 21.11.2024 05:19:08

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerabilit...