Edgeconnect Sd Wan Orchestrator

5 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-37185 MEDIUM This Month

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attacks against an administrative user of the interface. [CVSS 5.5 MEDIUM]

XSS Edgeconnect Sd Wan Orchestrator
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2025-37184 CRITICAL Act Now

An Orchestrator service allows unauthenticated attackers to bypass MFA and create admin accounts without multi-factor authentication. This undermines the security of the entire authentication system.

Authentication Bypass Edgeconnect Sd Wan Orchestrator
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-37183 HIGH This Week

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to perform SQL injection attacks. [CVSS 7.2 HIGH]

SQLi Edgeconnect Sd Wan Orchestrator
NVD
CVSS 3.1
7.2
EPSS
0.1%
CVE-2025-37182 HIGH This Week

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to perform SQL injection attacks. [CVSS 7.2 HIGH]

SQLi Edgeconnect Sd Wan Orchestrator
NVD
CVSS 3.1
7.2
EPSS
0.1%
CVE-2025-37181 HIGH This Week

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to perform SQL injection attacks. [CVSS 7.2 HIGH]

SQLi Edgeconnect Sd Wan Orchestrator
NVD
CVSS 3.1
7.2
EPSS
0.1%
CVE-2025-37185
EPSS 0% CVSS 5.5
MEDIUM This Month

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attacks against an administrative user of the interface. [CVSS 5.5 MEDIUM]

XSS Edgeconnect Sd Wan Orchestrator
NVD
CVE-2025-37184
EPSS 0% CVSS 9.8
CRITICAL Act Now

An Orchestrator service allows unauthenticated attackers to bypass MFA and create admin accounts without multi-factor authentication. This undermines the security of the entire authentication system.

Authentication Bypass Edgeconnect Sd Wan Orchestrator
NVD
CVE-2025-37183
EPSS 0% CVSS 7.2
HIGH This Week

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to perform SQL injection attacks. [CVSS 7.2 HIGH]

SQLi Edgeconnect Sd Wan Orchestrator
NVD
CVE-2025-37182
EPSS 0% CVSS 7.2
HIGH This Week

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to perform SQL injection attacks. [CVSS 7.2 HIGH]

SQLi Edgeconnect Sd Wan Orchestrator
NVD
CVE-2025-37181
EPSS 0% CVSS 7.2
HIGH This Week

Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to perform SQL injection attacks. [CVSS 7.2 HIGH]

SQLi Edgeconnect Sd Wan Orchestrator
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy