QID 316984
Date Published: 2021-06-23
QID 316984: Cisco SD-WAN Software Privilege Escalation Vulnerability(cisco-sa-sdwan-privesc-QVszVUPy)
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated,
local attacker to inject arbitrary commands to be executed
with Administrator privileges on the underlying operating system.
Affected Products
Following Cisco products if they were running the vulnerable release:
SD-WAN vBond Orchestrator Software
SD-WAN vEdge Cloud Routers
SD-WAN vEdge Routers
SD-WAN vManage Software
SD-WAN vSmart Controller Software
Vulnerable versions:
Prior to 18.3.0
From 18.4 Prior to 18.4.0
From 19.1 Prior to 19.1.0
From 19.2 Prior to 19.2.0
From 19.3 Prior to 19.3.0
From 20.1 Prior to 20.1.1
From 20.3 Prior to 20.3.1
From 20.4 Prior to 20.4.1
From 20.5 Prior to 20.5.1
Note: Support only for SD-WAN vManage and vedge-100-M.
QID detection logic:
The QID checks for Cisco SD WAN version retrieved via Unix Auth using "show system status" command
A successful exploit could allow the attacker to execute commands with Administrator privileges.
Customers are advised to refer to cisco-sa-sdwan-privesc-QVszVUPy for more information.
- cisco-sa-sdwan-privesc-QVszVUPy -
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-QVszVUPy
CVEs related to QID 316984
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-sdwan-privesc-QVszVUPy |
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-QVszVUPy |