Skip to main content

Vedge Plus

10 CVEs product

Monthly

CVE-2018-0351 HIGH This Week

A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator Vedge Plus Vedge Pro +9
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2018-0350 HIGH This Week

A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator Vedge Plus Vedge Pro +9
NVD
CVSS 3.0
8.8
EPSS
3.1%
CVE-2018-0349 CRITICAL Act Now

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Cisco Vbond Orchestrator Vedge Plus Vedge Pro +9
NVD
CVSS 3.1
9.8
EPSS
3.0%
CVE-2018-0348 HIGH This Week

A vulnerability in the CLI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator Vedge Plus Vedge Pro +9
NVD
CVSS 3.1
7.2
EPSS
2.9%
CVE-2018-0347 HIGH This Week

A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator Vedge Plus Vedge Pro +9
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2018-0346 HIGH This Week

A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Cisco Vbond Orchestrator Vedge Plus +10
NVD
CVSS 3.0
7.5
EPSS
2.0%
CVE-2018-0345 HIGH This Week

A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Cisco Vbond Orchestrator Vedge Plus Vedge Pro +9
NVD
CVSS 3.1
8.8
EPSS
3.0%
CVE-2018-0344 HIGH This Week

A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator Vedge Plus Vedge Pro +9
NVD
CVSS 3.0
7.2
EPSS
2.0%
CVE-2018-0343 HIGH This Week

A vulnerability in the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to execute arbitrary code with vmanage user privileges or cause. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Denial Of Service RCE Cisco Vbond Orchestrator +11
NVD
CVSS 3.0
8.8
EPSS
2.0%
CVE-2018-0342 MEDIUM This Month

A vulnerability in the configuration and monitoring service of the Cisco SD-WAN Solution could allow an authenticated, local attacker to execute arbitrary code with root privileges or cause a denial. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service RCE Buffer Overflow Cisco Vbond Orchestrator +11
NVD
CVSS 3.0
6.7
EPSS
0.5%
EPSS 0% CVSS 7.8
HIGH This Week

A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator +11
NVD
EPSS 3% CVSS 8.8
HIGH This Week

A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator +11
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Cisco Vbond Orchestrator +11
NVD
EPSS 3% CVSS 7.2
HIGH This Week

A vulnerability in the CLI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator +11
NVD
EPSS 0% CVSS 7.8
HIGH This Week

A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject arbitrary commands that are executed with root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator +11
NVD
EPSS 2% CVSS 7.5
HIGH This Week

A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Cisco +12
NVD
EPSS 3% CVSS 8.8
HIGH This Week

A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Cisco Vbond Orchestrator +11
NVD
EPSS 2% CVSS 7.2
HIGH This Week

A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Vbond Orchestrator +11
NVD
EPSS 2% CVSS 8.8
HIGH This Week

A vulnerability in the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to execute arbitrary code with vmanage user privileges or cause. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Denial Of Service RCE +13
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

A vulnerability in the configuration and monitoring service of the Cisco SD-WAN Solution could allow an authenticated, local attacker to execute arbitrary code with root privileges or cause a denial. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service RCE Buffer Overflow +13
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy