CVE-2023-20252

CRITICAL

Cisco Catalyst SD-WAN Manager Software - Auth Bypass

Title source: llm

Description

A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an unauthenticated, remote attacker to gain unauthorized access to the application as an arbitrary user. This vulnerability is due to improper authentication checks for SAML APIs. An attacker could exploit this vulnerability by sending requests directly to the SAML API. A successful exploit could allow the attacker to generate an authorization token sufficient to gain access to the application.

References (1)

Core 1

Core References

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vman-sc-LRLfu2z

Scores

CVSS v3 9.8

EPSS 0.0100

EPSS Percentile 77.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-862 CWE-287

Status published

Products (2)

cisco/catalyst_sd-wan_manager 20.9.3.2

cisco/catalyst_sd-wan_manager 20.11.1.2

Published Sep 27, 2023

Tracked Since Feb 18, 2026