Cisco Sd-Wan Vedge Cloud vulnerabilities

CVE-2025-20339 [MEDIUM] CWE-284 CVE-2025-20339: A vulnerability in the access control list (ACL) processing of IPv4 packets of Cisco SD-WAN vEdge So A vulnerability in the access control list (ACL) processing of IPv4 packets of Cisco SD-WAN vEdge Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to the improper enforcement of the implicit deny all at the end of a configured ACL. An attacker could exploit this vulnerability by attempti

CVE-2020-26071 [HIGH] CWE-22 CVE-2020-26071: A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacke A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service (DoS) condition. The vulnerability is due to insufficient input validation for specific commands. An attacker could exploit this vulnerability by includi

CVE-2024-20496 [MEDIUM] CWE-787 CVE-2024-20496: A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an unau A vulnerability in the UDP packet validation code of Cisco SD-WAN vEdge Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system. This vulnerability is due to incorrect handling of a specific type of malformed UDP packet. An attacker in a machine-in-the-middle position could explo

CVE-2022-20775 [HIGH] CWE-25 CVE-2022-20775: A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. This vulnerability is due to improper access controls on commands within the application CLI. An attacker could exploit this vulnerability by running a maliciously crafted command on the application CLI. A successful exploit cou