QID 317152

Date Published: 2022-04-25

QID 317152: Cisco SD-WAN vManage Software Cross-Site Request Forgery (CSRF) Vulnerability (cisco-sa-sdwan-vmanage-csrf-rxQL4tXR)

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system.

Affected Products
Prior to 20.6.1
20.7 prior to 20.7.1

QID detection logic:
The QID checks for Cisco SD WAN version retrieved via Unix Auth using "show system status" command

A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the affected user. These actions could include modifying the system configuration and deleting accounts.

  • CVSS V3 rated as High - 6.5 severity.
  • CVSS V2 rated as High - 7.8 severity.
  • Solution

    Customers are advised to refer to cisco-sa-sdwan-vmanage-csrf-rxQL4tXR for more information.

    CVEs related to QID 317152

    Software Advisories
    Advisory ID Software Component Link
    cisco-sa-sdwan-vmanage-csrf-rxQL4tXR URL Logo tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vmanage-csrf-rxQL4tXR