Every CVE whose affected-product data names Cisco Ios Xe Sd-wan, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (26)
CVE-2021-1619 — CVSS 9.8 (critical): A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an…
CVE-2020-3375 — CVSS 9.8 (critical): A vulnerability in Cisco SD-WAN Solution Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected…
CVE-2021-1300 — CVSS 9.8 (critical): Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected…
CVE-2021-1301 — CVSS 9.8 (critical): Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected…
CVE-2021-34727 — CVSS 9.8 (critical): A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer…
CVE-2021-1305 — CVSS 8.8 (high): Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote…
CVE-2021-1279 — CVSS 8.6 (high): Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS)…
CVE-2021-1278 — CVSS 8.6 (high): Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS)…
CVE-2024-20455 — CVSS 8.6 (high): A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE Software…
CVE-2021-1241 — CVSS 8.6 (high): Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS)…
CVE-2021-1273 — CVSS 8.6 (high): Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS)…
CVE-2021-1274 — CVSS 8.6 (high): Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS)…
CVE-2021-1529 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with…
CVE-2023-20035 — CVSS 7.8 (high): A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with…
CVE-2021-1432 — CVSS 7.3 (high): A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands on…
CVE-2020-3216 — CVSS 6.8 (medium): A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, physical attacker to bypass authentication and gain…
CVE-2021-34729 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow an authenticated, local attacker to…
CVE-2021-34725 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to inject arbitrary commands to be…
CVE-2021-1371 — CVSS 6.6 (medium): A vulnerability in the role-based access control of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker with…
CVE-2021-1454 — CVSS 6.0 (medium): Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying…
CVE-2021-1383 — CVSS 6.0 (medium): Multiple vulnerabilities in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying…
CVE-2021-34724 — CVSS 6.0 (medium): A vulnerability in the Cisco IOS XE SD-WAN Software CLI could allow an authenticated, local attacker to elevate privileges and execute…
CVE-2022-20850 — CVSS 5.5 (medium): A vulnerability in the CLI of stand-alone Cisco IOS XE SD-WAN Software and Cisco SD-WAN Software could allow an authenticated, local…
CVE-2024-20373 — CVSS 5.3 (medium): A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) IPv4 access control list (ACL) feature of Cisco IOS…
CVE-2025-20151 — CVSS 4.3 (medium): A vulnerability in the implementation of the Simple Network Management Protocol Version 3 (SNMPv3) feature of Cisco IOS Software and Cisco…