Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco SD-WAN Solution Privilege Escalation Vulnerability
Vulnerability Description
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges to the root user on an affected device. The vulnerability is due to insufficient authorization enforcement. An attacker could exploit this vulnerability by authenticating to the targeted device and executing commands that could lead to elevated privileges. A successful exploit could allow the attacker to make configuration changes to the system as the root user.
CVSS Information
N/A
Vulnerability Type
权限、特权和访问控制
Vulnerability Title
Cisco SD-WAN Solution 权限许可和访问控制问题漏洞
Vulnerability Description
Cisco SD-WAN Solution是美国思科(Cisco)公司的一套网络扩展解决方案。CLI是其中的一个命令行界面。 Cisco SD-WAN Solution 18.3.6版本、18.4.1版本和19.1.0版本中的CLI存在权限许可和访问控制问题漏洞。本地攻击者可通过向目标设备进行身份验证并执行命令利用该漏洞提升权限。以下产品及版本受到影响:Cisco vBond Orchestrator Software;vEdge 100 Series Routers;vEdge 1000 Series
CVSS Information
N/A
Vulnerability Type
N/A