CVE-2022-20747

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN vManage Software (affected versions not specified)

Description The issue is related to insufficient API authorization checking on the underlying operating system of the History API in Cisco SD-WAN vManage Software. This could allow an authenticated, remote attacker to gain access to sensitive information on an affected system by sending a crafted API request as a lower-privileged user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.