CVE-2021-1232

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vManage Software (affected versions not specified)

Description: A vulnerability in the web-based management interface could allow an authenticated, remote attacker to read arbitrary files on the underlying filesystem of an affected system. This issue is due to insufficient access control for sensitive information. An attacker could exploit this vulnerability by accessing sensitive information they are not authorized to access, potentially gaining access to devices and other network management systems.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.