Cisco Vbond Orchestrator — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Vbond Orchestrator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2018-0349 — CVSS 9.8 (critical): A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying…
CVE-2018-0343 — CVSS 8.8 (high): A vulnerability in the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to…
CVE-2019-1650 — CVSS 8.8 (high): A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying…
CVE-2018-0345 — CVSS 8.8 (high): A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to…
CVE-2018-0350 — CVSS 8.8 (high): A vulnerability in the VPN subsystem configuration in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject…
CVE-2020-3379 — CVSS 7.8 (high): A vulnerability in Cisco SD-WAN Solution Software could allow an authenticated, local attacker to elevate privileges to Administrator on…
CVE-2018-0347 — CVSS 7.8 (high): A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution could allow an authenticated, local attacker to…
CVE-2018-0351 — CVSS 7.8 (high): A vulnerability in the command-line tcpdump utility in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject…
CVE-2018-0433 — CVSS 7.8 (high): A vulnerability in the command-line interface (CLI) in the Cisco SD-WAN Solution could allow an authenticated, local attacker to inject…
CVE-2019-1646 — CVSS 7.8 (high): A vulnerability in the local CLI of the Cisco SD-WAN Solution could allow an authenticated, local attacker to escalate privileges and…
CVE-2019-1648 — CVSS 7.8 (high): A vulnerability in the user group configuration of the Cisco SD-WAN Solution could allow an authenticated, local attacker to gain elevated…
CVE-2018-0346 — CVSS 7.5 (high): A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to…
CVE-2018-0348 — CVSS 7.2 (high): A vulnerability in the CLI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject arbitrary commands that are…
CVE-2018-0344 — CVSS 7.2 (high): A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an…
CVE-2018-0342 — CVSS 6.7 (medium): A vulnerability in the configuration and monitoring service of the Cisco SD-WAN Solution could allow an authenticated, local attacker to…