Cisco Wide Area Application Services vulnerabilities
3 known vulnerabilities affecting cisco/cisco_wide_area_application_services.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2020-3446P2CRITICALCVSS 9.8vn/a2020-08-26
CVE-2020-3446 [CRITICAL] CWE-798 CVE-2020-3446: A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV In
A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images for Cisco ENCS 5400-W Series and CSP 5000-W Series appliances could allow an unauthenticated, remote attacker to log into the NFVIS CLI of an affected device by using accounts that have a default, static pa
nvd
CVE-2019-1876P4MEDIUMCVSS 5.3≥ unspecified, < 6.4(5.6)2019-06-20
CVE-2019-1876 [MEDIUM] CWE-306 CVE-2019-1876: A vulnerability in the HTTPS proxy feature of Cisco Wide Area Application Services (WAAS) Software c
A vulnerability in the HTTPS proxy feature of Cisco Wide Area Application Services (WAAS) Software could allow an unauthenticated, remote attacker to use the Central Manager as an HTTPS proxy. The vulnerability is due to insufficient authentication of proxy connection requests. An attacker could exploit this vulnerability by sending a malicious HTTPS
nvd
CVE-2021-1438P4MEDIUMCVSS 5.5vn/a2021-05-06
CVE-2021-1438 [MEDIUM] CWE-668 CVE-2021-1438: A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated
A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerabi
nvd