Cisco SD-WAN 20.8.0

CPE Details

Cisco SD-WAN 20.8.0
cisco
sd-wan
20.8.0
2023-03-30
14h16 +00:00
2023-06-21
14h34 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:sd-wan:20.8.0:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

sd-wan

Version

20.8.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-20113 2023-03-22 23h00 +00:00 A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management interface on an affected system. An attacker could exploit this vulnerability by persuading a user of the interface to click a malicious link. A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the affected user. These actions could include modifying the system configuration and deleting accounts.
8.1
High
CVE-2022-20818 2022-09-30 18h45 +00:00 Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabilities by running a malicious command on the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
7.8
High