A vulnerability in the CLI interface of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read arbitrary files on the underlying file system of an affected system. This vulnerability exists because access to sensitive information on an affected system is not sufficiently controlled. An attacker could exploit this vulnerability by gaining unauthorized access to sensitive information on an affected system. A successful exploit could allow the attacker to create forged authentication requests and gain unauthorized access to the web UI of an affected system.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vmanage-infdis-LggOP9sE | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2021-07-21T00:00:00
Updated: 2021-07-22T15:20:10
Reserved: 2021-06-15T00:00:00
Link: CVE-2021-34700
JSON object: View
NVD Information
Status : Modified
Published: 2021-07-22T16:15:09.300
Modified: 2023-11-07T03:36:05.920
Link: CVE-2021-34700
JSON object: View
Redhat Information
No data.
CWE