threat
engine
.sh
Back
·
··:··
Home
/
Product
/
cisco sd wan firmware
Product
cisco sd wan firmware
41 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2021-1241
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1233
< 18.4.3
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information o
4.4
MEDIUM
CVE-2021-1305
< 20.3.2
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remo
8.8
HIGH
CVE-2021-1301
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an af
9.8
CRITICAL
CVE-2021-1300
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an af
9.8
CRITICAL
CVE-2021-1299
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
8.8
HIGH
CVE-2021-1298
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
8.8
HIGH
CVE-2021-1279
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1278
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1274
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1273
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (Do
8.6
HIGH
CVE-2021-1263
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2021-1262
< 19.2.4
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2021-1261
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2021-1260
all versions
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks again
7.8
HIGH
CVE-2020-3468
<= 19.2.2
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
5.4
MEDIUM
CVE-2020-3437
< 19.2.3
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
6.5
MEDIUM
CVE-2020-3406
<= 19.2.2
A vulnerability in the web-based management interface of the Cisco SD-WAN vManage Software could allow an authenticated, remote at
5.4
MEDIUM
CVE-2020-3405
<= 19.2.2
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and writ
7.3
HIGH
CVE-2020-3401
<= 19.2.2
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
6.5
MEDIUM
CVE-2020-3388
<= 18.3.0
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to inject arbitrary comma
7.8
HIGH
CVE-2020-3387
<= 18.3.0
A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to execute code with root privilege
8.8
HIGH
CVE-2020-3385
<= 18.3.0
A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, adjacent
6.5
MEDIUM
CVE-2020-3381
<= 18.3.0
A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to
8.8
HIGH
CVE-2020-3379
< 18.3.0
A vulnerability in Cisco SD-WAN Solution Software could allow an authenticated, local attacker to elevate privileges to Administra
7.8
HIGH
CVE-2020-3378
< 18.4.5
A vulnerability in the web-based management interface for Cisco SD-WAN vManage Software could allow an authenticated, remote attac
4.3
MEDIUM
CVE-2020-3372
< 19.2.3
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attack
6.5
MEDIUM
CVE-2020-3369
all versions
A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, remote at
7.5
HIGH
CVE-2020-3351
< 17.2.7
A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, remote attacker to cause a denial of service (Do
8.6
HIGH
CVE-2020-3266
< 19.2.2
A vulnerability in the CLI of Cisco SD-WAN Solution software could allow an authenticated, local attacker to inject arbitrary comm
7.8
HIGH
CVE-2020-3265
< 18.4.5
A vulnerability in Cisco SD-WAN Solution software could allow an authenticated, local attacker to elevate privileges to root on th
7.8
HIGH
CVE-2020-3264
< 18.4.5
A vulnerability in Cisco SD-WAN Solution software could allow an authenticated, local attacker to cause a buffer overflow on an af
7.1
HIGH
CVE-2019-16012
< 19.2.2
A vulnerability in the web UI of Cisco SD-WAN Solution vManage software could allow an authenticated, remote attacker to conduct S
8.1
HIGH
CVE-2019-16010
< 19.2.2
A vulnerability in the web UI of the Cisco SD-WAN vManage software could allow an authenticated, remote attacker to conduct a cros
4.8
MEDIUM
CVE-2020-3115
all versions
A vulnerability in the CLI of the Cisco SD-WAN Solution vManage software could allow an authenticated, local attacker to elevate p
8.8
HIGH
CVE-2019-12629
< 18.3.0
A vulnerability in the WebUI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbi
7.2
HIGH
CVE-2019-12619
<= 17.2.0
A vulnerability in the web interface for Cisco SD-WAN Solution vManage could allow an authenticated, remote attacker to impact the
6.5
MEDIUM
CVE-2019-16002
< 19.2.0
A vulnerability in the vManage web-based UI (web UI) of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker
6.5
MEDIUM
CVE-2019-1951
<= 19.1.0
A vulnerability in the packet filtering features of Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to bypas
5.8
MEDIUM
CVE-2019-1626
<= 18.3.6
A vulnerability in the vManage web-based UI (Web UI) of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to
8.8
HIGH
CVE-2019-1625
< 18.3.6
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges
7.8
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin