Cisco Ios Xe Sd-Wan Software vulnerabilities

CVE-2021-1529 [HIGH] CWE-78 CVE-2021-1529: A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attac A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation by the system CLI. An attacker could exploit this vulnerability by authenticating to an affected device and submitting crafted input to the sy

CVE-2021-34727 [CRITICAL] CWE-120 CVE-2021-34727: A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticate A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes traffic. An attacker could exploit this vulnerability by sending crafted traffic to the

CVE-2021-1612 [HIGH] CWE-61 CVE-2021-1612: A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker to overwrite arbitrary files on the local system. This vulnerability is due to improper access controls on files within the local file system. An attacker could exploit this vulnerability by placing a symbolic link in a specific location on the local file

CVE-2021-34725 [MEDIUM] CWE-77 CVE-2021-34725: A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attac A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with root-level privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certain CLI commands. An attacker could exploit this vulnerability by authentic

CVE-2021-34729 [MEDIUM] CWE-77 CVE-2021-34729: A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary commands with elevated privileges on an affected device. This vulnerability is due to insufficient validation of arguments passed to certain CLI commands. An attacker could exploit this vulnerability by

CVE-2021-34724 [MEDIUM] CWE-284 CVE-2021-34724: A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker to elevate privileges and execute arbitrary code on the underlying operating system as the root user. An attacker must be authenticated on an affected device as a PRIV15 user. This vulnerability is due to insufficient file system protection and the p

CVE-2020-3216 [MEDIUM] CWE-287 CVE-2020-3216: A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, physical attacker to A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, physical attacker to bypass authentication and gain unrestricted access to the root shell of an affected device. The vulnerability exists because the affected software has insufficient authentication mechanisms for certain commands. An attacker could exploit this vulnerabi

CVE-2019-16011 [HIGH] CWE-77 CVE-2019-16011: A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attac A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by authenticating to the device and submitting crafted input to the CLI utili

CVE-2019-1950 [HIGH] CWE-255 CVE-2019-1950: A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local attacker to ga A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local attacker to gain unauthorized access to an affected device. The vulnerability is due to the existence of default credentials within the default configuration of an affected device. An attacker who has access to an affected device could log in with elevated privileges.