Multiple vulnerabilities in Cisco SD-WAN

Post author:shashikant redekar
Post published:May 22, 2021
Post category:Vulnerabilities
Post comments:0 Comments

Original Issue Date: May 21, 2021

Severity Rating: HIGH

Software Affected

IOS XE SD-WAN Software
SD-WAN cEdge Routers
SD-WAN vBond Orchestrator Software
SD-WAN vEdge Routers
SD-WAN vSmart Controller Software

Overview

Multiple vulnerabilities have been reported in Cisco SD-WAN vManage Software which could be exploited by a remote attacker to execute arbitrary code or gain access to sensitive information to the affected system.

Description

These vulnerabilities exist in Cisco SD-WAN vManage software due to improper access Control. A remote attacker could exploit these vulnerabilities to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the application.

Successful exploitation of these vulnerabilities could allow the attacker to bypass implemented security restrictions and gain unauthorized access to the affected system.

Solution

Apply appropriate patches as mentioned in vendor’s website.

CISCO

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-vmanage-4TbynnhZ

Disclaimer

The information provided herein is on “as is” basis, without warranty of any kind.

Please Share This Share this content

You Might Also Like

Multiple Vulnerabilities in Juniper devices

Multiple Vulnerabilities in SAP Products

Multiple vulnerabilities in Microsoft product

Leave a Reply Cancel reply

Share this content