CVE-2019-1647

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN Solution (affected versions not specified)

Description The issue is related to inadequate access control in the Cisco SD-WAN Solution, which could allow an attacker to bypass authentication procedures and gain unauthorized access to system files. This is due to an insecure default configuration of the affected system. An attacker could exploit this by directly connecting to exposed services, potentially allowing them to retrieve and modify critical system files.

Recommendations For the Cisco SD-WAN Solution, consider reconfiguring the system to secure default settings and restrict access to exposed services until a more permanent fix is available. As a temporary workaround, restrict direct connections to the exposed services to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.