Known Vulnerabilities for Sd-wan Vmanage by Cisco

Listed below are 10 of the newest known vulnerabilities associated with "Sd-wan Vmanage" by "Cisco".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-20113 A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote... Not Provided 2023-03-23 2023-03-23
CVE-2022-20850 A vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an authenticated... 7.1 - HIGH 2022-09-30 2022-10-05
CVE-2022-20830 A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vM... 5.3 - MEDIUM 2022-10-10 2022-10-13
CVE-2022-20818 Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated pr... 7.8 - HIGH 2022-09-30 2022-10-04
CVE-2022-20775 Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated pr... 7.8 - HIGH 2022-09-30 2022-11-10
CVE-2022-20747 A vulnerability in the History API of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain acc... 6.5 - MEDIUM 2022-04-15 2022-05-13
CVE-2022-20739 A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary... 7.3 - HIGH 2022-04-15 2022-05-13
CVE-2022-20735 A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote... 6.5 - MEDIUM 2022-04-15 2022-05-13
CVE-2022-20734 A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local attacker to view sensitive information o... 4.4 - MEDIUM 2022-05-04 2022-05-11
CVE-2022-20716 A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges... 7.8 - HIGH 2022-04-15 2022-05-13
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationCiscoSd-wan Vmanage20.3.2AllAllAll
ApplicationCiscoSd-wan Vmanage20.3.1AllAllAll
ApplicationCiscoSd-wan Vmanage20.3AllAllAll
ApplicationCiscoSd-wan Vmanage20.1.12AllAllAll
ApplicationCiscoSd-wan Vmanage18.2.0AllAllAll

Popular searches for Sd-wan Vmanage

SD-WAN - Software-Defined WAN

www.cisco.com/c/en/us/solutions/enterprise-networks/sd-wan/index.html

D-WAN - Software-Defined WAN D-WAN Get a highly secure, cloud-delivered wide-area network that is simple to manage and easy to deploy and that delivers a great user experience. Deliver applications on time, on any platform, anywhere, with Cisco D-WAN

www.cisco.com/c/en/us/solutions/enterprise-networks/intelligent-wan/index.html www.cisco.com/c/en/us/solutions/enterprise-networks/intelligent-wan/index.html www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networks/sd-wan/white-paper-c11-741640.pdf www.cisco.com/go/sdwan www.cisco.com/go/iwan www.cisco.com/go/sdwan www.cisco.com/c/en/us/solutions/enterprise-networks/intelligent-wan-akamai/index.html www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networks/sd-wan/nb-06-what-sd-wan-so-cte-en.pdf cisco.com/go/IWAN SD-WAN Cisco Systems Cloud computing Computer security Computer network Application software Wide area network Multicloud Software deployment Computing platform User experience User (computing) Software-defined networking Internet access On-premises software Colocation centre Business transaction management Security Unified communications Bandwidth (computing)

Cisco Security Advisory: Cisco SD-WAN vManage Software Authorization Bypass Vulnerability

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uabvman-SYGzt8Bv

Cisco Security Advisory: Cisco SD-WAN vManage Software Authorization Bypass Vulnerability = ; 9A vulnerability in the web-based management interface of Cisco D-WAN Manage Software could allow an authenticated, remote attacker to bypass authorization, enabling them to access sensitive information, modify the system configuration, or impact the availability of the affected system. The vulnerability is due to insufficient authorization checking on the affected system. An attacker could exploit this vulnerability by sending crafted HTTP requests to the web-based management interface of an affected system. A successful exploit could allow the attacker to gain privileges beyond what would normally be authorized for their configured user authorization level. The attacker may be able to access sensitive information, modify the system configuration, or impact the availability of the affected system. Cisco

Cisco Systems Vulnerability (computing) Software Authorization SD-WAN Security hacker Exploit (computer security) Information sensitivity Web application World Wide Web Management interface Computer security Windows Metafile vulnerability Computer configuration Availability Patch (computing) Hypertext Transfer Protocol Authentication System User (computing)

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].
© CVE.report 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report