CVE-2019-1950

Name of the Vulnerable Software and Affected Versions Cisco IOS XE SD-WAN Software versions 16.11 and earlier

Description A vulnerability in the software could allow an unauthenticated, local attacker to gain unauthorized access to an affected device due to the existence of default credentials within the default configuration. An attacker who has access to an affected device could log in with elevated privileges, potentially taking complete control of the device. The issue is related to errors in handling registration data, which could be exploited to gain full control over the device.

Recommendations For versions 16.11 and earlier, consider changing the default credentials to prevent unauthorized access, and ensure that all devices are configured with secure login credentials to minimize the risk of exploitation. As a temporary workaround, restrict access to the device to prevent attackers from logging in with elevated privileges.