N.S

**Name of the Vulnerable Software and Affected Versions** Cisco SD-WAN vManage Software (affected versions not specified) **Description** The issue is related to multiple vulnerabilities in the software, which could allow an unauthenticated, remote attacker to execute arbitrary code, gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges. Specifically, the vulnerability in the messaging service of Cisco SD-WAN is associated with authentication errors, which could allow a remote attacker to create new administrative-level user accounts. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco SD-WAN vManage Software (affected versions not specified) **Description** The issue is related to multiple vulnerabilities in Cisco SD-WAN vManage Software that could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information. It could also allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the application. Additionally, there is a vulnerability related to cluster mode that is associated with inadequate access control, which could allow a remote attacker to gain unauthorized access to services in the vulnerable system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.