CVE-2023-20034

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN vManage (affected versions not specified)

Description The issue is related to insufficient access controls in the Elasticsearch database used by Cisco SD-WAN vManage software. This could allow an unauthenticated, remote attacker to access the Elasticsearch configuration database with the privileges of the elasticsearch user. The vulnerability is due to a static username and password configured on the vManage. An attacker could exploit this by sending a crafted HTTP request to a reachable vManage on port 9200, potentially allowing them to view the Elasticsearch database content.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.