What is the severity of cisco-sa-sd-wan-file-access-VW36d28P?

The vulnerability cisco-sa-sd-wan-file-access-VW36d28P is considered to have a high severity due to the potential for escalated privileges.

How do I fix cisco-sa-sd-wan-file-access-VW36d28P?

To fix cisco-sa-sd-wan-file-access-VW36d28P, you should upgrade to a patched version of Cisco SD-WAN Software as recommended in the advisory.

Who is affected by cisco-sa-sd-wan-file-access-VW36d28P?

Devices running specific versions of Cisco SD-WAN Software, including 20.7, 20.6, and 20.3, are affected by the vulnerability cisco-sa-sd-wan-file-access-VW36d28P.

What causes the vulnerability cisco-sa-sd-wan-file-access-VW36d28P?

The cisco-sa-sd-wan-file-access-VW36d28P vulnerability is caused by improper access control on files within the affected Cisco SD-WAN system.

Can an attacker exploit cisco-sa-sd-wan-file-access-VW36d28P remotely?

No, exploitation of cisco-sa-sd-wan-file-access-VW36d28P requires an authenticated, local attacker to perform actions on the affected system.

Vulnerability/
cisco-sa-sd-wan-file-access-VW36d28P

high

7.8

CWE

284

13/4/2022

23/1/2024

cisco-sa-sd-wan-file-access-VW36d28P: Cisco SD-WAN Solution Improper Access Control Vulnerability

First published: Wed Apr 13 2022(Updated: )

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper access control on files within the affected system. A local attacker could exploit this vulnerability by modifying certain files on the vulnerable device. If successful, the attacker could gain escalated privileges and take actions on the system with the privileges of the root user. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-file-access-VW36d28P

Credit: Joris Oversteyns.

Affected Software	Affected Version	How to fix
Cisco SD-WAN Solution	=20.7<20.7.1>=20.4=20.5<=20.6<20.6.1>=18.4=19.2<=20.3<20.3.6	20.7.1 20.6.1 20.3.6

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2022-20716

Frequently Asked Questions

What is the severity of cisco-sa-sd-wan-file-access-VW36d28P?
The vulnerability cisco-sa-sd-wan-file-access-VW36d28P is considered to have a high severity due to the potential for escalated privileges.
How do I fix cisco-sa-sd-wan-file-access-VW36d28P?
To fix cisco-sa-sd-wan-file-access-VW36d28P, you should upgrade to a patched version of Cisco SD-WAN Software as recommended in the advisory.
Who is affected by cisco-sa-sd-wan-file-access-VW36d28P?
Devices running specific versions of Cisco SD-WAN Software, including 20.7, 20.6, and 20.3, are affected by the vulnerability cisco-sa-sd-wan-file-access-VW36d28P.
What causes the vulnerability cisco-sa-sd-wan-file-access-VW36d28P?
The cisco-sa-sd-wan-file-access-VW36d28P vulnerability is caused by improper access control on files within the affected Cisco SD-WAN system.
Can an attacker exploit cisco-sa-sd-wan-file-access-VW36d28P remotely?
No, exploitation of cisco-sa-sd-wan-file-access-VW36d28P requires an authenticated, local attacker to perform actions on the affected system.

agent/type
agent/first-publish-date
collector/cisco-recent
source/Cisco
agent/severity
agent/weakness
agent/title
agent/last-modified-date
agent/author
agent/description
agent/event
agent/references
agent/source
agent/tags
collector/cisco-advisory
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
vendor/cisco
canonical/cisco sd-wan solution
version/cisco sd-wan solution/20.7
version/cisco sd-wan solution/20.4
version/cisco sd-wan solution/20.5
version/cisco sd-wan solution/20.6
version/cisco sd-wan solution/18.4
version/cisco sd-wan solution/19.2
version/cisco sd-wan solution/20.3