CVE-2022-20739Improper Privilege Management in Cisco Sd-wan Vmanage

CWE-269Improper Privilege Management4 documents4 sources
Severity
7.3HIGHNVD
EPSS
0.1%
top 69.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Cisco Sd-wan VmanageCisco Sd-wan VmanageCisco Catalyst Sd-wan Manager
Timeline
PublishedApr 15
Latest updateApr 16

Description

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as the root user. The attacker must be authenticated on the affected system as a low-privileged user to exploit this vulnerability. This vulnerability exists because a file leveraged by a root user is executed when a low-privileged user runs specific commands on an affected system. An attacker could exploit this vulnerability by

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 1.3 | Impact: 5.9

Affected Packages3 packages

NVDcisco/sd-wan_vmanage< 20.6.1

🔴Vulnerability Details

2
GHSA
GHSA-32vw-hmgx-hqv2: A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary commands on the underlyi2022-04-16
CVEList
Cisco SD-WAN vManage Software Privilege Escalation Vulnerability2022-04-15

📋Vendor Advisories

1
Cisco
Cisco SD-WAN vManage Software Privilege Escalation Vulnerability2022-04-13
CVE-2022-20739 — Improper Privilege Management in Cisco | cvebase