CVE-2021-1263

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN products (affected versions not specified)

Description The issue is related to multiple vulnerabilities in Cisco SD-WAN products that could allow an authenticated attacker to perform command injection attacks against an affected device. This could enable the attacker to take certain actions with root privileges on the device. The vulnerability is also associated with insufficient input validation in the command-line interface (CLI), which could allow an attacker to impact the confidentiality and integrity of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.