Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Sd\-Wan_vedge_router
(Cisco)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-04-15 | CVE-2022-20716 | A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modifying certain files on the vulnerable device. If successful, the attacker could gain escalated privileges and take actions on the system with the privileges of the root user. | Catalyst_sd\-Wan_manager, Sd\-Wan, Sd\-Wan_solution, Sd\-Wan_vbond_orchestrator, Sd\-Wan_vedge_cloud, Sd\-Wan_vedge_router, Sd\-Wan_vsmart_controller_software | 7.8 | ||
| 2022-04-15 | CVE-2022-20717 | A vulnerability in the NETCONF process of Cisco SD-WAN vEdge Routers could allow an authenticated, local attacker to cause an affected device to run out of memory, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient memory management when an affected device receives large amounts of traffic. An attacker could exploit this vulnerability by sending malicious traffic to an affected device. A successful exploit could allow the attacker to cause the device... | Sd\-Wan_vedge_router | 5.5 |