CVE-2019-12619

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN Solution vManage (affected versions not specified)

Description A vulnerability in the web interface could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The issue is due to insufficient validation of user-supplied input. An attacker could exploit this by sending crafted input that includes SQL statements to an affected system, potentially modifying entries in some database tables and affecting data integrity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.