Cisco

Catalyst Sd-wan Manager

91 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2020-26065

  • EPSS 0.27%
  • Veröffentlicht 04.08.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 05:19:08

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensitive files on an affected system. The vulnerabilit...

8.1

CVE-2020-26064

  • EPSS 0.14%
  • Veröffentlicht 04.08.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 05:19:07

A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML Ext...

9.1

CVE-2023-20214

  • EPSS 0.19%
  • Veröffentlicht 03.08.2023 22:15:11
  • Zuletzt bearbeitet 21.11.2024 07:40:54

A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software could allow an unauthenticated, remote attacker to gain read permissions or limited write permissions to the configuration of an affected Cisco...

6

CVE-2023-20098

  • EPSS 0.16%
  • Veröffentlicht 09.05.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:40:32

A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. A...

5.3

CVE-2022-20830

  • EPSS 0.27%
  • Veröffentlicht 10.10.2022 21:15:10
  • Zuletzt bearbeitet 21.11.2024 06:43:38

A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vManage could allow an unauthenticated, remote attacker to access the GUI of Cisco SD-AVC without authentication. This vulnerab...

6.7

CVE-2022-20930

  • EPSS 0.33%
  • Veröffentlicht 30.09.2022 19:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:50

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite and possibly corrupt files on an affected system. This vulnerability is due to insufficient input validation. An attacker could exploit this...

7.8

CVE-2022-20775

Warnung Medienbericht Exploit
  • EPSS 0.42%
  • Veröffentlicht 30.09.2022 19:15:11
  • Zuletzt bearbeitet 26.02.2026 16:20:09

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. This vulnerability is due to improper access controls on commands within the application CLI. An attacker could exploit t...

8.8

CVE-2022-20696

  • EPSS 0.33%
  • Veröffentlicht 08.09.2022 13:15:08
  • Zuletzt bearbeitet 21.11.2024 06:43:20

A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also access the messaging service ports on an affected system. Th...

4.9

CVE-2022-20734

  • EPSS 0.06%
  • Veröffentlicht 04.05.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:43:26

A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local attacker to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker with neta...

6.5

CVE-2022-20747

  • EPSS 0.2%
  • Veröffentlicht 15.04.2022 15:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:28

A vulnerability in the History API of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain access to sensitive information on an affected system. This vulnerability is due to insufficient API authorization checking on t...