CVE-2021-1506

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN vManage Software (affected versions not specified)

Description The issue is related to multiple vulnerabilities in Cisco SD-WAN vManage Software that could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information. It could also allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the application. Additionally, there is a vulnerability related to cluster mode that is associated with inadequate access control, which could allow a remote attacker to gain unauthorized access to services in the vulnerable system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.