Julien Legras

**Name of the Vulnerable Software and Affected Versions** Cisco IOS XE SD-WAN Software (affected versions not specified) **Description** A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation by the system CLI. An attacker could exploit this vulnerability by authenticating to an affected device and submitting crafted input to the system CLI. A successful exploit could allow the attacker to execute commands on the underlying operating system with root privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN Software (affected versions not specified) Description: A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges on an affected system. This issue exists because the software does not properly restrict access to privileged processes. An attacker could exploit this by invoking a privileged process, potentially allowing them to perform actions with the privileges of the root user. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco SD-WAN vManage Software (affected versions not specified) **Description** A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to inject arbitrary commands on an affected system and cause a denial of service (DoS) condition. This is due to improper input validation of user-supplied input to the device template configuration. An attacker could exploit this by submitting crafted input to the device template configuration, potentially causing a DoS condition on the affected system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco SD-WAN vManage Software (affected versions not specified) **Description** The issue is related to errors in the authorization procedure of the Cisco SD-WAN vManage web interface. It allows a remote attacker to gain unauthorized access to protected information by sending specially crafted HTTP requests. This is due to insufficient authorization checks. An attacker could exploit this by sending crafted HTTP requests to the web-based management interface, potentially bypassing authorization checking and gaining access to sensitive information. **Recommendations** For Cisco SD-WAN vManage Software, update to a version that includes the software updates released by Cisco to address this issue. As a temporary workaround, consider restricting access to the web-based management interface to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Cisco SD-WAN vManage Software (affected versions not specified) **Description** A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information stored on an affected system. This issue is due to improper handling of XML External Entity (XXE) entries when the affected software parses certain XML files. An attacker could exploit this vulnerability by persuading a user to import a crafted XML file with malicious entries, potentially allowing the attacker to read and write files within the affected application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco SD-WAN vManage Software (affected versions not specified) **Description** The issue is related to insufficient neutralization of special elements in data requests in the web-based management interface of Cisco SD-WAN vManage Software. This could allow a remote attacker to conduct Cypher query language injection attacks on an affected system, potentially obtaining sensitive information. The vulnerability is due to insufficient input validation by the web-based management interface. An attacker could exploit this by sending crafted HTTP requests to the interface of an affected system. **Recommendations** For all affected versions, update to the latest software version that addresses this vulnerability, as released by Cisco. There are no workarounds that address this vulnerability. As a temporary measure, consider restricting access to the web-based management interface to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS XE SD-WAN Software (affected versions not specified) **Description** The issue is related to insufficient input validation in the CLI interface of the software. This could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The attacker must first authenticate to the device and then submit crafted input to the CLI utility to exploit this issue. A successful exploit could allow the attacker to execute commands with root privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.