Main Vulnerability Database Vulnerabilities #VU17222

Security restrictions bypass in Cisco SD-WAN - CVE-2019-1647

Published: January 23, 2019 / Updated: January 25, 2019

Vulnerability identifier: #VU17222

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2019-1647

CWE-ID: CWE-264

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vendor: Cisco Systems, Inc

Affected software:
Cisco SD-WAN

Detailed vulnerability description

The vulnerability allows an adjacent authenticated attacker to bypass security restrictions on the target system.

The vulnerability exists due to an insecure default configuration. An adjacent authenticated attacker can directly connect to the exposed services to retrieve and modify critical system files.

How to mitigate CVE-2019-1647

Install update from vendor's website.

Sources

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-sdwan-unacce...

Security restrictions bypass in Cisco SD-WAN - CVE-2019-1647

Detailed vulnerability description

How to mitigate CVE-2019-1647

Sources

Please verify you're human