CVE-2025-20187

Q: What is the severity of CVE-2025-20187?

CVE-2025-20187 has a CVSS score of 6.5 (MEDIUM). This vulnerability in Cisco Catalyst SD-WAN Manager allows authenticated remote attackers to write arbitrary files via API requests due to improper input validation. Attackers can conduct directory traversal attacks to write files anywhere on the system. Organizations using affected versions of Cisco SD-WAN Manager are at risk.

6.5 MEDIUM

📋 TL;DR

This vulnerability in Cisco Catalyst SD-WAN Manager allows authenticated remote attackers to write arbitrary files via API requests due to improper input validation. Attackers can conduct directory traversal attacks to write files anywhere on the system. Organizations using affected versions of Cisco SD-WAN Manager are at risk.

💻 Affected Systems

Products:

Cisco Catalyst SD-WAN Manager (formerly Cisco SD-WAN vManage)

Versions: Multiple versions - check Cisco advisory for specific affected versions

Operating Systems: Linux-based appliance OS

Default Config Vulnerable: ⚠️ Yes

Notes: Requires authenticated access to the API endpoints

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco

Catalyst Sd Wan Manager by Cisco