📦 Catalyst Sd Wan Manager
by Cisco
🔍 What is Catalyst Sd Wan Manager?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Manager allows unauthenticated remote attackers to gain netadmin privileges by sending crafted API requests. Systems running ...
This critical authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller and Manager allows unauthenticated remote attackers to gain administrative privileges. Attackers can manipulate ne...
This critical vulnerability in Cisco Catalyst SD-WAN Manager allows unauthenticated remote attackers to bypass authentication via SAML API flaws, gaining unauthorized access as any user. Organizations...
An unauthenticated remote attacker can exploit insufficient request validation in the REST API of Cisco SD-WAN vManage software to gain read or limited write permissions to the configuration. This aff...
Multiple vulnerabilities in Cisco SD-WAN vManage Software allow unauthenticated remote attackers to execute arbitrary code or access sensitive information, and authenticated local attackers to escalat...
CVE-2021-1505 is a critical vulnerability in Cisco SD-WAN vManage software that allows unauthenticated remote attackers to execute arbitrary code or access sensitive information. It also enables authe...
Multiple vulnerabilities in Cisco SD-WAN vManage Software allow unauthenticated remote attackers to execute arbitrary code or access sensitive information, and authenticated local attackers to escalat...
CVE-2021-1300 is a critical buffer overflow vulnerability in Cisco SD-WAN products that allows unauthenticated remote attackers to execute arbitrary code or cause denial of service. Affected systems i...
This vulnerability in Cisco Catalyst SD-WAN Manager allows authenticated local users with low privileges to escalate to root privileges through the REST API. It affects organizations using vulnerable ...
This vulnerability allows authenticated local attackers with read-only privileges on Cisco Catalyst SD-WAN Manager to escalate to root privileges on the underlying operating system through insufficien...
This vulnerability in Cisco SD-WAN vManage software allows authenticated local attackers to gain escalated privileges by exploiting improper path validation in file transfer functions. Attackers can o...
This vulnerability allows authenticated local attackers on Cisco SD-WAN devices to create or overwrite arbitrary files through insufficient input validation in CLI commands. This could lead to denial ...
This vulnerability in Cisco SD-WAN Software allows authenticated local attackers to gain root privileges by exploiting improper access controls in the CLI. Attackers can execute arbitrary commands as ...
This vulnerability allows authenticated low-privileged users on Cisco SD-WAN vManage systems to escalate privileges to root by injecting commands into a file executed by administrators. Attackers must...
This vulnerability in Cisco SD-WAN Software allows authenticated local attackers to escalate privileges to root by exploiting improper access restrictions on privileged processes. It affects Cisco SD-...
This vulnerability in Cisco SD-WAN Software allows unauthenticated remote attackers to cause affected devices to reload by sending malformed packets, resulting in denial of service. It affects Cisco S...
This vulnerability allows an unauthenticated attacker with network access to adjacent Cisco SD-WAN vEdge devices to bypass authentication and authorization on Cisco SD-WAN vManage Software. The attack...
CVE-2021-1479 allows unauthenticated remote attackers to execute arbitrary code on Cisco SD-WAN vManage software, or authenticated local attackers to gain escalated privileges. This affects organizati...
This vulnerability in Cisco SD-WAN vManage Software allows unauthenticated remote attackers to execute arbitrary code or authenticated local attackers to gain escalated privileges. It affects organiza...
This vulnerability allows authenticated local attackers with read-only CLI access to overwrite arbitrary files on Cisco Catalyst SD-WAN Manager devices. By exploiting improper file access controls, at...
This vulnerability allows unauthenticated remote attackers to inject HTML content into authenticated users' browsers via the Cisco Catalyst SD-WAN Manager web interface. Attackers can exploit this by ...
This vulnerability in Cisco Catalyst SD-WAN Manager allows authenticated remote attackers to write arbitrary files via API requests due to improper input validation. Attackers can conduct directory tr...
An improper certificate validation vulnerability in Cisco Catalyst SD-WAN Manager (formerly vManage) allows attackers to intercept Smart Licensing traffic and steal sensitive credentials. Unauthentica...
This vulnerability allows authenticated local administrators on Cisco SD-WAN vManage Software to escalate their privileges to root level. Attackers need valid administrator credentials to exploit this...
This vulnerability allows authenticated remote attackers to read arbitrary files on Cisco SD-WAN vManage systems through the web management interface. It affects organizations using Cisco SD-WAN vMana...
This vulnerability allows authenticated remote attackers to bypass authorization checks in Cisco SD-WAN vManage's web management interface, potentially accessing sensitive information. It affects orga...
This vulnerability in Cisco SD-WAN vManage Software allows authenticated remote attackers to inject arbitrary commands through the web UI's device template configuration, potentially causing a denial ...
This vulnerability in Cisco SD-WAN vManage Software allows authenticated remote attackers to bypass authorization checks and access restricted configuration data. The issue stems from insufficient inp...
This SQL injection vulnerability in Cisco SD-WAN vManage allows authenticated attackers to execute malicious SQL queries against the database. It affects organizations using vulnerable versions of Cis...