CVE-2025-20213

CWE-78OS Command Injection4 documents4 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 76.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Cisco Catalyst Sd-wan ManagerCisco Catalyst Sd-wan Manager
Timeline
PublishedMay 7

Description

A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. To exploit this vulnerability, the attacker must have valid read-only credentials with CLI access on the affected system. This vulnerability is due to improper access controls on files that are on the local file system. An attacker could exploit this vulnerability by running a series

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDcisco/catalyst_sd-wan_manager283 versions+282
CVEListV5cisco/cisco_catalyst_sd-wan_manager305 versions+304

🔴Vulnerability Details

2
CVEList
Cisco Catalyst SDWAN Manager Arbitrary File Overwrite Vulnerability2025-05-07
GHSA
GHSA-p3qm-wvjx-4jgf: A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite2025-05-07

📋Vendor Advisories

1
Cisco
Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability2025-05-07
CVE-2025-20213 (MEDIUM CVSS 5.5) | A vulnerability in the CLI of Cisco | cvebase.io