CVE-2020-3387

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN vManage Software (affected versions not specified)

Description The issue is due to insufficient input sanitization during user authentication processing, allowing an authenticated, remote attacker to execute code with root privileges on an affected system. An attacker could exploit this by sending a crafted response to the Cisco SD-WAN vManage Software, potentially accessing the software and executing unauthorized commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.