threat
engine
.sh
Back
·
··:··
Home
/
Product
/
cisco catalyst sd wan manager
Product
cisco catalyst sd wan manager
85 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-20182
< 20.9.9.1
May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after
10.0
CRITICAL
CVE-2026-20133
< 20.9.8.2
A vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to view sensitive information on
6.5
MEDIUM
CVE-2026-20129
< 20.9.8.2
A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to
9.8
CRITICAL
CVE-2026-20128
< 20.9.8.2
A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote
7.5
HIGH
CVE-2026-20127
< 20.9.8.2
A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-W
10.0
CRITICAL
CVE-2026-20126
< 20.9.8.2
A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with low privileges to gain root pri
8.8
HIGH
CVE-2026-20122
< 20.9.8.2
A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary f
5.4
MEDIUM
CVE-2025-20216
all versions
A vulnerability in the web interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an unauthenticat
4.7
MEDIUM
CVE-2025-20213
all versions
A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local at
5.5
MEDIUM
CVE-2025-20187
all versions
A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an
6.5
MEDIUM
CVE-2025-20157
all versions
A vulnerability in certificate validation processing of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow
5.9
MEDIUM
CVE-2025-20147
all versions
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow
5.4
MEDIUM
CVE-2025-20122
all versions
A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local at
7.8
HIGH
CVE-2020-26066
all versions
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and
6.5
MEDIUM
CVE-2021-1465
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
4.3
MEDIUM
CVE-2021-1462
all versions
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to elevate privilege
6.7
MEDIUM
CVE-2021-1234
all versions
A vulnerability in the cluster management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote a
5.3
MEDIUM
CVE-2021-1232
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote a
6.5
MEDIUM
CVE-2020-26074
all versions
A vulnerability in system file transfer functions of Cisco SD-WAN vManage Software could allow an authenticated, local attack
7.8
HIGH
CVE-2020-26073
all versions
A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could allow an unauthenticated, remote att
7.5
HIGH
CVE-2020-26071
all versions
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbit
8.4
HIGH
CVE-2021-1491
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote a
6.5
MEDIUM
CVE-2021-1484
all versions
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to inject arbitr
6.5
MEDIUM
CVE-2021-1483
all versions
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and
6.4
MEDIUM
CVE-2021-1482
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote a
6.4
MEDIUM
CVE-2021-1481
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote a
4.3
MEDIUM
CVE-2021-1470
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote a
4.9
MEDIUM
CVE-2021-1466
all versions
A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause
5.4
MEDIUM
CVE-2021-1464
all versions
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checki
5.0
MEDIUM
CVE-2024-20475
all versions
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow
6.4
MEDIUM
CVE-2023-20261
all versions
A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary
6.5
MEDIUM
CVE-2023-20262
>= 20.4 and < 20.9.3
A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a pro
5.3
MEDIUM
CVE-2023-20253
all versions
A vulnerability in the command line interface (cli) management interface of Cisco SD-WAN vManage could allow an authenticated, loc
7.1
HIGH
CVE-2023-20252
all versions
A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an una
9.8
CRITICAL
CVE-2020-26065
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
6.5
MEDIUM
CVE-2020-26064
all versions
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and writ
8.1
HIGH
CVE-2023-20214
>= 20.6.4 and < 20.6.4.2
A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software could allow an unauthen
9.1
CRITICAL
CVE-2023-20098
all versions
A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files.
4.4
MEDIUM
CVE-2022-20830
>= 20.4 and < 20.6.1
A vulnerability in authentication mechanism of Cisco Software-Defined Application Visibility and Control (SD-AVC) on Cisco vManage
5.3
MEDIUM
CVE-2022-20930
all versions
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite and possibly corrupt
6.7
MEDIUM
CVE-2022-20775
< 20.6.3
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. T
7.8
HIGH
CVE-2022-20696
>= 20.7 and < 20.9.1
A vulnerability in the binding configuration of Cisco SD-WAN vManage Software containers could allow an unauthenticated, adjacent
7.5
HIGH
CVE-2022-20734
>= 20.6 and < 20.6.3
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, local attacker to view sensitive information on an
4.4
MEDIUM
CVE-2022-20747
all versions
A vulnerability in the History API of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain access t
6.5
MEDIUM
CVE-2022-20739
all versions
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to execute arbitrary comm
7.3
HIGH
CVE-2022-20735
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote atta
6.5
MEDIUM
CVE-2022-20716
all versions
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges. Thi
7.8
HIGH
CVE-2021-34712
>= 20.4 and <= 20.4.2
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
5.4
MEDIUM
CVE-2021-1546
>= 18.4 and < 20.4.2
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information.
5.5
MEDIUM
CVE-2021-34700
>= 20.5.0 and < 20.5.1
A vulnerability in the CLI interface of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read arbitra
5.5
MEDIUM
CVE-2021-1528
>= 20.4 and < 20.4.2
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges on an
7.8
HIGH
CVE-2021-1514
>= 20.1 and < 20.1.1
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to b
7.8
HIGH
CVE-2021-1513
< 20.3.1
A vulnerability in the vDaemon process of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to cause a device
7.5
HIGH
CVE-2021-1512
>= 19.2 and < 19.2.3
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in t
6.0
MEDIUM
CVE-2021-1508
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
9.8
CRITICAL
CVE-2021-1506
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
9.8
CRITICAL
CVE-2021-1505
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
9.8
CRITICAL
CVE-2021-1486
>= 20.4 and < 20.4.1
A vulnerability in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to enumerate user accounts. This
5.3
MEDIUM
CVE-2021-1468
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
9.8
CRITICAL
CVE-2021-1284
>= 20.4 and < 20.4.1
A vulnerability in the web-based messaging service interface of Cisco SD-WAN vManage Software could allow an unauthenticated, adja
8.8
HIGH
CVE-2021-1275
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
9.8
CRITICAL
CVE-2021-1480
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
7.8
HIGH
CVE-2021-1479
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
7.8
HIGH
CVE-2021-1137
>= 20.4 and < 20.4.1
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary cod
7.8
HIGH
CVE-2021-1241
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1233
all versions
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information o
4.4
MEDIUM
CVE-2021-1304
all versions
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remo
8.8
HIGH
CVE-2021-1302
all versions
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remo
8.8
HIGH
CVE-2021-1301
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an af
9.8
CRITICAL
CVE-2021-1300
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an af
9.8
CRITICAL
CVE-2021-1299
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
8.8
HIGH
CVE-2021-1298
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
8.8
HIGH
CVE-2021-1279
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1278
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1274
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1273
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1263
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2021-1262
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2021-1261
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2021-1260
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2020-3592
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
6.5
MEDIUM
CVE-2020-3591
all versions
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote at
4.3
MEDIUM
CVE-2020-3590
all versions
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote at
6.4
MEDIUM
CVE-2020-3587
all versions
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote at
6.4
MEDIUM
CVE-2020-3579
all versions
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote atta
6.1
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin