Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-80115
HistorySep 28, 2023 - 12:00 a.m.

Cisco Catalyst SD-WAN Manager Unauthorized Access Vulnerability

2023-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
cisco
catalyst
sd-wan
manager
unauthorized access
vulnerability
saml api
authorization
token

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

60.5%

JSON

Cisco vManage is a highly customizable control panel that simplifies and automates Cisco SD-WAN deployment, configuration, management and operations. An unauthorized access vulnerability exists in Cisco Catalyst SD-WAN Manager in versions 20.9.3.2 and 20.11.1.2. The vulnerability is due to failure to properly check the SAML API. An attacker could use this vulnerability to generate an authorization token sufficient to access the application.

Related

nvd 1
cvelist 1
prion 1
cve 1
cisco 1
thn 1
nvd
nvd
CVE-2023-20252
2023-09-27 18:15:11
cvelist
cvelist
CVE-2023-20252
2023-09-27 17:17:38
prion
prion
Authentication flaw
2023-09-27 18:15:00
cve
cve
CVE-2023-20252
2023-09-27 18:15:11
cisco
cisco
Cisco Catalyst SD-WAN Manager Vulnerabilities
2023-09-27 16:00:00
thn
thn
Cisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation Attempts
2023-09-29 03:02:00

AI Score

6.7

Confidence

Low

EPSS

0.002

Percentile

60.5%

JSON
Related for CNVD-2023-80115
nvd1cvelist1prion1cve1cisco1thn1