Cisco

Sd-wan Vmanage

43 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-20696

  • EPSS 0.22%
  • Veröffentlicht 08.09.2022 13:15:08
  • Zuletzt bearbeitet 21.11.2024 06:43:20

A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent attacker who has access to the VPN0 logical network to also access the messaging service ports on an affected system. Th...

6.5

CVE-2022-20747

  • EPSS 0.41%
  • Veröffentlicht 15.04.2022 15:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:28

A vulnerability in the History API of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain access to sensitive information on an affected system. This vulnerability is due to insufficient API authorization checking on t...

8.5

CVE-2022-20739

  • EPSS 0.12%
  • Veröffentlicht 15.04.2022 15:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:27

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a...

6.5

CVE-2022-20735

  • EPSS 0.18%
  • Veröffentlicht 15.04.2022 15:15:13
  • Zuletzt bearbeitet 21.11.2024 06:43:26

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insuffici...

10

CVE-2021-44228

Warnung Exploit
  • EPSS 94.36%
  • Veröffentlicht 10.12.2021 10:15:09
  • Zuletzt bearbeitet 08.08.2025 18:52:00

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

6.5

CVE-2021-34712

  • EPSS 0.07%
  • Veröffentlicht 23.09.2021 03:15:17
  • Zuletzt bearbeitet 21.11.2024 06:11:01

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct cypher query language injection attacks on an affected system. This vulnerability is due to insufficient i...

5.5

CVE-2021-1546

  • EPSS 0.15%
  • Veröffentlicht 23.09.2021 03:15:11
  • Zuletzt bearbeitet 21.11.2024 05:44:35

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information. This vulnerability is due to improper protections on file access through the CLI. An attacker could exploit this vulnera...

5.5

CVE-2021-34700

  • EPSS 0.05%
  • Veröffentlicht 22.07.2021 16:15:09
  • Zuletzt bearbeitet 21.11.2024 06:10:59

A vulnerability in the CLI interface of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read arbitrary files on the underlying file system of an affected system. This vulnerability exists because access to sensitive info...

5.3

CVE-2021-1535

  • EPSS 0.31%
  • Veröffentlicht 06.05.2021 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:44:34

A vulnerability in the cluster management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. To be affected by this vulnerability, the Cisco SD-WAN vManage S...

6

CVE-2021-1512

  • EPSS 0.06%
  • Veröffentlicht 06.05.2021 13:15:10
  • Zuletzt bearbeitet 21.11.2024 05:44:31

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system of an affected system. This vulnerability is due to insufficient validation of the user-suppli...