This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Cisco First view 2018-10-05
Product Sd-Wan Last view 2023-09-27
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:cisco:sd-wan:16.2.0:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:*:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:17.1.5:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:17.1.4:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:17.1.3:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:17.1.2:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:17.1.1:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:17.1.0:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.3.3:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.3.2:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.3.1:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.3.0:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.14:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.13:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.11:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.12:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.1:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.2:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.3:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.4:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.5:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.6:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.7:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.8:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.9:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:16.2.10:*:*:*:*:*:*:* 20
cpe:2.3:a:cisco:sd-wan:18.3.0:*:*:*:*:*:*:* 19
cpe:2.3:a:cisco:sd-wan:18.3.5:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:18.3.4:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:18.3.1:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:18.3.3:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:18.3.2:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:18.2.0:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:18.1.1:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:18.1.0:*:*:*:*:*:*:* 18
cpe:2.3:a:cisco:sd-wan:20.3.1:*:*:*:*:*:*:* 11
cpe:2.3:a:cisco:sd-wan:20.3.4.1:*:*:*:*:*:*:* 6
cpe:2.3:a:cisco:sd-wan:20.3.4.2:*:*:*:*:*:*:* 6
cpe:2.3:a:cisco:sd-wan:20.3.5:*:*:*:*:*:*:* 6
cpe:2.3:a:cisco:sd-wan:20.6:*:*:*:*:*:*:* 5
cpe:2.3:a:cisco:sd-wan:20.7:*:*:*:*:*:*:* 2
cpe:2.3:a:cisco:sd-wan:20.7.1:*:*:*:*:*:*:* 1
cpe:2.3:a:cisco:sd-wan:20.9.0:*:*:*:*:*:*:* 1
cpe:2.3:a:cisco:sd-wan:20.8.0:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
7.5 2023-09-27 CVE-2023-20034

Vulnerability in the Elasticsearch database used in the of Cisco SD-WAN vManage software could allow an unauthenticated, remote attacker to access the Elasticsearch configuration database of an affected device with the privileges of the elasticsearch user.

These vulnerability is due to the presence of a static username and password configured on the vManage. An attacker could exploit this vulnerability by sending a crafted HTTP request to a reachable vManage on port 9200. A successful exploit could allow the attacker to view the Elasticsearch database content.

There are workarounds that address this vulnerability.

8.1 2023-03-23 CVE-2023-20113

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management interface on an affected system. An attacker could exploit this vulnerability by persuading a user of the interface to click a malicious link. A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the affected user. These actions could include modifying the system configuration and deleting accounts.

5.3 2022-09-30 CVE-2022-20844

A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vManage could allow an unauthenticated, remote attacker to access the GUI of Cisco SD-AVC using a default static username and password combination. This vulnerability exists because the GUI is accessible on self-managed cloud installations or local server installations of Cisco vManage. An attacker could exploit this vulnerability by accessing the exposed GUI of Cisco SD-AVC. A successful exploit could allow the attacker to view managed device names, SD-AVC logs, and SD-AVC DNS server IP addresses.

7.8 2022-04-15 CVE-2022-20716

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modifying certain files on the vulnerable device. If successful, the attacker could gain escalated privileges and take actions on the system with the privileges of the root user.

6.7 2021-09-23 CVE-2021-34726

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation on certain CLI commands. An attacker could exploit this vulnerability by authenticating to an affected device and submitting crafted input to the CLI. The attacker must be authenticated as an administrative user to execute the affected commands. A successful exploit could allow the attacker to execute commands with root-level privileges.

7.1 2021-09-23 CVE-2021-1612

A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker to overwrite arbitrary files on the local system. This vulnerability is due to improper access controls on files within the local file system. An attacker could exploit this vulnerability by placing a symbolic link in a specific location on the local file system. A successful exploit could allow the attacker to overwrite arbitrary files on an affected device.

6.5 2021-09-23 CVE-2021-1589

A vulnerability in the disaster recovery feature of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain unauthorized access to user credentials. This vulnerability exists because access to API endpoints is not properly restricted. An attacker could exploit this vulnerability by sending a request to an API endpoint. A successful exploit could allow the attacker to gain unauthorized access to administrative credentials that could be used in further attacks.

5.3 2021-07-22 CVE-2021-1614

A vulnerability in the Multiprotocol Label Switching (MPLS) packet handling function of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to gain access to information stored in MPLS buffer memory. This vulnerability is due to insufficient handling of malformed MPLS packets that are processed by a device that is running Cisco SD-WAN Software. An attacker could exploit this vulnerability by sending a crafted MPLS packet to an affected device that is running Cisco SD-WAN Software or Cisco SD-WAN vManage Software. A successful exploit could allow the attacker to gain unauthorized access to sensitive information.

7.8 2020-11-06 CVE-2020-3600

A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient security controls on the CLI. An attacker could exploit this vulnerability by using an affected CLI utility that is running on an affected system. A successful exploit could allow the attacker to gain root privileges.

7.8 2020-11-06 CVE-2020-3595

A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root group on the underlying operating system. The vulnerability is due to incorrect permissions being set when the affected command is executed. An attacker could exploit this vulnerability by executing the affected command on an affected system. A successful exploit could allow the attacker to gain root privileges.

7.8 2020-11-06 CVE-2020-3594

A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by providing crafted options to a specific command. A successful exploit could allow the attacker to gain root privileges.

7.8 2020-11-06 CVE-2020-3593

A vulnerability in Cisco SD-WAN Software could allow an authenticated, local attacker to elevate privileges to root on the underlying operating system. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to a utility that is running on an affected system. A successful exploit could allow the attacker to gain root privileges.

6.5 2020-11-06 CVE-2020-27128

A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to write arbitrary files to an affected system. The vulnerability is due to improper validation of requests to APIs. An attacker could exploit this vulnerability by sending malicious requests to an API within the affected application. A successful exploit could allow the attacker to conduct directory traversal attacks and write files to an arbitrary location on the targeted system.

5.4 2020-10-08 CVE-2020-3536

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by inserting malicious data into a specific data field in an affected interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface.

9.8 2020-07-31 CVE-2020-3375

A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted traffic to an affected device. A successful exploit could allow the attacker to gain access to information that they are not authorized to access, make changes to the system that they are not authorized to make, and execute commands on an affected system with privileges of the root user.

9.9 2020-07-31 CVE-2020-3374

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization, enabling them to access sensitive information, modify the system configuration, or impact the availability of the affected system. The vulnerability is due to insufficient authorization checking on the affected system. An attacker could exploit this vulnerability by sending crafted HTTP requests to the web-based management interface of an affected system. A successful exploit could allow the attacker to gain privileges beyond what would normally be authorized for their configured user authorization level. The attacker may be able to access sensitive information, modify the system configuration, or impact the availability of the affected system.

7.8 2020-07-16 CVE-2020-3180

A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, local attacker to access an affected device by using an account that has a default, static password. This account has root privileges. The vulnerability exists because the affected software has a user account with a default, static password. An attacker could exploit this vulnerability by remotely connecting to an affected system by using this account. A successful exploit could allow the attacker to log in by using this account with root privileges.

8.8 2019-06-19 CVE-2019-1624

A vulnerability in the vManage web-based UI (Web UI) in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating to the device and submitting crafted input to the vManage Web UI. A successful exploit could allow the attacker to execute commands with root privileges.

8 2019-01-24 CVE-2019-1647

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent attacker to bypass authentication and have direct unauthorized access to other vSmart containers. The vulnerability is due to an insecure default configuration of the affected system. An attacker could exploit this vulnerability by directly connecting to the exposed services. An exploit could allow the attacker to retrieve and modify critical system files.

9.8 2018-10-05 CVE-2018-15387

A vulnerability in the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to bypass certificate validation on an affected device. The vulnerability is due to improper certificate validation. An attacker could exploit this vulnerability by supplying a system image signed with a crafted certificate to an affected device, bypassing the certificate validation. An exploit could allow an attacker to deploy a crafted system image.

CWE : Common Weakness Enumeration

%idName
13% (2) CWE-522 Insufficiently Protected Credentials
13% (2) CWE-269 Improper Privilege Management
6% (1) CWE-798 Use of Hard-coded Credentials
6% (1) CWE-732 Incorrect Permission Assignment for Critical Resource
6% (1) CWE-352 Cross-Site Request Forgery (CSRF)
6% (1) CWE-295 Certificate Issues
6% (1) CWE-284 Access Control (Authorization) Issues
6% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
6% (1) CWE-78 Improper Sanitization of Special Elements used in an OS Command ('O...
6% (1) CWE-77 Improper Sanitization of Special Elements used in a Command ('Comma...
6% (1) CWE-59 Improper Link Resolution Before File Access ('Link Following')
6% (1) CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path ...
6% (1) CWE-20 Improper Input Validation

Snort® IPS/IDS

Date Description
2020-12-05 Cisco SD-WAN Solution command injection attempt
RuleID : 50492 - Type : SERVER-WEBAPP - Revision : 1