Vulnerabilities > Cisco > SD WAN Firmware > 18.3.0

DATE CVE VULNERABILITY TITLE RISK
2019-11-26 CVE-2019-16002 Cross-Site Request Forgery (CSRF) vulnerability in Cisco Sd-Wan Firmware
A vulnerability in the vManage web-based UI (web UI) of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system.
network
cisco CWE-352
4.3
4.3
2019-08-08 CVE-2019-1951 Unspecified vulnerability in Cisco Sd-Wan Firmware
A vulnerability in the packet filtering features of Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to bypass L3 and L4 traffic filters.
network
low complexity
cisco
5.0
5.0
2019-06-20 CVE-2019-1626 Permissions, Privileges, and Access Controls vulnerability in Cisco Sd-Wan Firmware
A vulnerability in the vManage web-based UI (Web UI) of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to gain elevated privileges on an affected vManage device.
network
low complexity
cisco CWE-264
6.5
6.5
2019-06-20 CVE-2019-1625 Unspecified vulnerability in Cisco Sd-Wan Firmware
A vulnerability in the CLI of Cisco SD-WAN Solution could allow an authenticated, local attacker to elevate lower-level privileges to the root user on an affected device.
local
low complexity
cisco
7.2
7.2