Description
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges on an affected system. This vulnerability exists because the affected software does not properly restrict access to privileged processes. An attacker could exploit this vulnerability by invoking a privileged process in the affected system. A successful exploit could allow the attacker to perform actions with the privileges of the root user.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-fuErCWwF
Scores
CVSS v3
7.8
EPSS
0.0025
EPSS Percentile
15.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-250
Status
published
Products (11)
cisco/catalyst_sd-wan_manager
20.4 - 20.4.2
cisco/sd-wan_vbond_orchestrator
20.4 - 20.4.2
cisco/vedge_1000_firmware
20.4 - 20.4.2
cisco/vedge_100_firmware
20.4 - 20.4.2
cisco/vedge_100b_firmware
20.4 - 20.4.2
cisco/vedge_100m_firmware
20.4 - 20.4.2
cisco/vedge_100wm_firmware
20.4 - 20.4.2
cisco/vedge_2000_firmware
20.4 - 20.4.2
cisco/vedge_5000_firmware
20.4 - 20.4.2
cisco/vedge_cloud_firmware
20.4 - 20.4.2
... and 1 more
Published
Jun 04, 2021
Tracked Since
Feb 18, 2026