CVE-2018-15387

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN Solution (affected versions not specified)

Description The issue is related to improper certificate validation, allowing an unauthenticated, remote attacker to bypass certificate validation on an affected device. An attacker could exploit this by supplying a system image signed with a crafted certificate, which could allow the deployment of a crafted system image. The vulnerability is also described as being related to insufficient input validation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.