OpenCVE

A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML External Entity (XXE) entries when parsing certain XML files. An attacker could exploit this vulnerability by persuading a user to import a crafted XML file with malicious entries. A successful exploit could allow the attacker to read and write files within the affected application.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Cisco	Catalyst Sd-wan Manager

No data.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanx3-vrZbOqqD

History

Mon, 18 Nov 2024 18:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Cisco Cisco catalyst Sd-wan Manager
CPEs		cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.10:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.4:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.5:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.6:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.7:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.8:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.9:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.2.0:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.0:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.1.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.3.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.3:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.4:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.5:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.6.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.6:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.7:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.8:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.0.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.0:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.302:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.303:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.3:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.4:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.501_es:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.5:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.0.0:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.0.1a:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.1.0:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.097:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.098:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.099:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.0:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.2:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.31:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.3:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.929:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.3.0:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.1.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.12:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.1:::::::* cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.1:::::::*
Vendors & Products		Cisco Cisco catalyst Sd-wan Manager
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 18 Nov 2024 16:45:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The vulnerability is due to improper handling of XML External Entity (XXE) entries when parsing certain XML files. An attacker could exploit this vulnerability by persuading a user to import a crafted XML file with malicious entries. A successful exploit could allow the attacker to read and write files within the affected application.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Title		Cisco SD-WAN vManage Software XML External Entity Vulnerability
Weaknesses		CWE-611
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanx3-vrZbOqqD
Metrics		cvssV3_0 `{'score': 6.5, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:X/RL:X/RC:X'}`

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2024-11-18T16:23:47.442Z

Updated: 2024-11-18T17:20:31.871Z

Reserved: 2020-09-24T00:00:00.000Z

Link: CVE-2020-26066

Vulnrichment

Updated: 2024-11-18T17:18:34.026Z

NVD

Status : Awaiting Analysis

Published: 2024-11-18T17:15:09.437

Modified: 2024-11-19T21:57:56.293

Link: CVE-2020-26066

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object