Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco SD-WAN Software Privilege Escalation Vulnerability
Vulnerability Description
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be executed with Administrator privileges on the underlying operating system. This vulnerability is due to insufficient input validation on certain CLI commands. An attacker could exploit this vulnerability by authenticating to the device and submitting crafted input to the CLI. The attacker must be authenticated as a low-privileged user to execute the affected commands. A successful exploit could allow the attacker to execute commands with Administrator privileges.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco SD-WAN vManage 操作系统命令注入漏洞
Vulnerability Description
Cisco SD-WAN vManage是美国思科(Cisco)公司的一款可提供软件定义网络功能的软件。该软件为网络虚拟化的一种方式。 Cisco SD-WAN vManage 存在操作系统命令注入漏洞,本地攻击者可利用该漏洞注入任意命令以执行该漏洞是由于某些CLI命令的输入验证不足造成的。
CVSS Information
N/A
Vulnerability Type
N/A