CVE-2022-20716

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN Software (affected versions not specified)

Description A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modifying certain files on the vulnerable device, potentially gaining escalated privileges and taking actions on the system with the privileges of the root user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.