CVE-2022-20775 - Vulnerability Details

Description

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges.

This vulnerability is due to improper access controls on commands within the application CLI. An attacker could exploit this vulnerability by running a maliciously crafted command on the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF

Published: 2022-09-30

Score: 7.8 High

EPSS: < 1% Very Low

KEV: Yes

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Cisco

Cisco Catalyst SD-WAN

unknown

Version	Status	Constraints
`18.3.1`	affected	—
`19.2.1`	affected	—
`17.2.4`	affected	—
`19.3.0`	affected	—
`18.3.0`	affected	—
`18.3.4`	affected	—
`18.4.303`	affected	—
`18.4.0.1`	affected	—
`17.2.9`	affected	—
`18.3.7`	affected	—
`18.2.0`	affected	—
`17.2.10`	affected	—
`18.4.5`	affected	—
`18.4.0`	affected	—
`17.2.5`	affected	—
`18.3.8`	affected	—
`18.4.4`	affected	—
`18.4.302`	affected	—
`17.2.7`	affected	—
`19.2.098`	affected	—
`20.1.1`	affected	—
`19.2.099`	affected	—
`18.3.3`	affected	—
`18.4.1`	affected	—
`17.2.8`	affected	—
`18.3.5`	affected	—
`19.0.0`	affected	—
`18.4.3`	affected	—
`19.1.0`	affected	—
`17.2.6`	affected	—
`18.3.3.1`	affected	—
`19.2.097`	affected	—
`20.1.1.1`	affected	—
`18.3.6`	affected	—
`19.2.0`	affected	—
`19.2.2`	affected	—
`20.1.11`	affected	—
`20.1.12`	affected	—
`19.1.0a`	affected	—
`19.2.3`	affected	—
`17.3.1ESM1`	affected	—
`20.3.1`	affected	—
`17.3.1ESM2`	affected	—
`17.2.1LA`	affected	—
`20.1.2`	affected	—
`17.3.1ESM3`	affected	—
`19.2.929`	affected	—
`19.2.31`	affected	—
`20.3.2`	affected	—
`19.2.32`	affected	—
`17.3.2ESM1`	affected	—
`20.3.2.1`	affected	—
`18.4.6`	affected	—
`20.4.1`	affected	—
`17.3.2ESM2`	affected	—
`19.2.4`	affected	—
`20.4.1.1`	affected	—
`20.3.3`	affected	—
`20.3.809`	affected	—
`20.3.3.1`	affected	—
`20.5.1`	affected	—
`20.3.811`	affected	—
`20.1.3`	affected	—
`20.4.1.2`	affected	—
`17.4.2.2527`	affected	—
`17.4.2ES1`	affected	—
`17.3.2ESM3`	affected	—
`20.4.2`	affected	—
`20.3.4`	affected	—
`20.6.1`	affected	—
`20.6.1.1`	affected	—
`20.6.2`	affected	—
`20.7.1`	affected	—
`20.4.2.1`	affected	—
`20.3.4.1`	affected	—
`20.5.1.1`	affected	—
`20.6.2.1`	affected	—
`20.3.4.2`	affected	—
`20.4.2.2`	affected	—
`20.6.2.2`	affected	—
`20.5.1.2`	affected	—
`20.7.1.1`	affected	—
`20.3.5`	affected	—
`20.6.3`	affected	—
`20.7.2`	affected	—
`20.6.3.1`	affected	—
`20.6.4`	affected	—
`20.3.6`	affected	—
`20.6.5`	affected	—
`20.3.7`	affected	—
`20.6.5.1`	affected	—
`20.6.4.1`	affected	—
`20.6.3.2`	affected	—
`20.4.2.3`	affected	—
`20.6.1.2`	affected	—
`20.3.4.3`	affected	—
`20.6.5.2`	affected	—
`20.3.3.2`	affected	—
`20.3.7.1`	affected	—
`20.3.5.1`	affected	—
`20.1.3.1`	affected	—
`20.6.5.3`	affected	—
`20.6.3.3`	affected	—
`20.3.7.2`	affected	—
`20.6.5.4`	affected	—
`20.6.4.2`	affected	—
`20.6.5.5`	affected	—
`20.6.3.4`	affected	—
`20.3.8`	affected	—
`20.6.6`	affected	—
`20.6.7`	affected	—
`20.6.8`	affected	—

Cisco

Cisco Catalyst SD-WAN Manager

unknown

Version	Status	Constraints
`20.1.12`	affected	—
`19.2.1`	affected	—
`18.4.4`	affected	—
`18.4.5`	affected	—
`20.1.1.1`	affected	—
`20.1.1`	affected	—
`19.3.0`	affected	—
`19.2.2`	affected	—
`19.2.099`	affected	—
`18.3.6`	affected	—
`18.3.7`	affected	—
`19.2.0`	affected	—
`18.3.8`	affected	—
`19.0.0`	affected	—
`19.1.0`	affected	—
`18.4.302`	affected	—
`18.4.303`	affected	—
`19.2.097`	affected	—
`19.2.098`	affected	—
`17.2.10`	affected	—
`18.3.6.1`	affected	—
`19.0.1a`	affected	—
`18.2.0`	affected	—
`18.4.3`	affected	—
`18.4.1`	affected	—
`17.2.8`	affected	—
`18.3.3.1`	affected	—
`18.4.0`	affected	—
`18.3.1`	affected	—
`17.2.6`	affected	—
`17.2.9`	affected	—
`18.3.4`	affected	—
`17.2.5`	affected	—
`18.3.1.1`	affected	—
`18.3.5`	affected	—
`18.4.0.1`	affected	—
`18.3.3`	affected	—
`17.2.7`	affected	—
`17.2.4`	affected	—
`18.3.0`	affected	—
`19.2.3`	affected	—
`18.4.501_ES`	affected	—
`20.3.1`	affected	—
`20.1.2`	affected	—
`19.2.929`	affected	—
`19.2.31`	affected	—
`20.3.2`	affected	—
`19.2.32`	affected	—
`20.3.2_925`	affected	—
`20.3.2.1`	affected	—
`20.3.2.1_927`	affected	—
`18.4.6`	affected	—
`20.1.2_937`	affected	—
`20.4.1`	affected	—
`20.3.2_928`	affected	—
`20.3.2_929`	affected	—
`20.4.1.0.1`	affected	—
`20.3.2.1_930`	affected	—
`19.2.4`	affected	—
`20.5.0.1.1`	affected	—
`20.4.1.1`	affected	—
`20.3.3`	affected	—
`19.2.4.0.1`	affected	—
`20.3.2_937`	affected	—
`20.3.3.1`	affected	—
`20.5.1`	affected	—
`20.1.3`	affected	—
`20.3.3.0.4`	affected	—
`20.3.3.1.2`	affected	—
`20.3.3.1.1`	affected	—
`20.4.1.2`	affected	—
`20.3.3.0.2`	affected	—
`20.4.1.1.5`	affected	—
`20.4.1.0.01`	affected	—
`20.4.1.0.02`	affected	—
`20.3.3.1.7`	affected	—
`20.3.3.1.5`	affected	—
`20.5.1.0.1`	affected	—
`20.3.3.1.10`	affected	—
`20.3.3.0.8`	affected	—
`20.4.2`	affected	—
`20.4.2.0.1`	affected	—
`20.3.4`	affected	—
`20.3.3.0.14`	affected	—
`19.2.4.0.8`	affected	—
`19.2.4.0.9`	affected	—
`20.3.4.0.1`	affected	—
`20.3.2.0.5`	affected	—
`20.6.1`	affected	—
`20.5.1.0.2`	affected	—
`20.3.3.0.17`	affected	—
`20.6.1.1`	affected	—
`20.6.0.18.3`	affected	—
`20.3.2.0.6`	affected	—
`20.6.0.18.4`	affected	—
`20.4.2.0.2`	affected	—
`20.3.3.0.16`	affected	—
`20.3.4.0.5`	affected	—
`20.6.1.0.1`	affected	—
`20.3.4.0.6`	affected	—
`20.6.2`	affected	—
`20.7.1EFT2`	affected	—
`20.3.4.0.9`	affected	—
`20.3.4.0.11`	affected	—
`20.4.2.0.4`	affected	—
`20.3.3.0.18`	affected	—
`20.7.1`	affected	—
`20.6.2.1`	affected	—
`20.3.4.1`	affected	—
`20.5.1.1`	affected	—
`20.4.2.1`	affected	—
`20.4.2.1.1`	affected	—
`20.3.4.1.1`	affected	—
`20.3.813`	affected	—
`20.3.4.0.19`	affected	—
`20.4.2.2.1`	affected	—
`20.5.1.2`	affected	—
`20.3.4.2`	affected	—
`20.3.814`	affected	—
`20.4.2.2`	affected	—
`20.6.2.2`	affected	—
`20.3.4.2.1`	affected	—
`20.7.1.1`	affected	—
`20.3.4.1.2`	affected	—
`20.6.2.2.2`	affected	—
`20.3.4.0.20`	affected	—
`20.6.2.2.3`	affected	—
`20.4.2.2.2`	affected	—
`20.3.5`	affected	—
`20.6.2.0.4`	affected	—
`20.4.2.2.3`	affected	—
`20.3.4.0.24`	affected	—
`20.6.2.2.7`	affected	—
`20.6.3`	affected	—
`20.3.4.2.2`	affected	—
`20.4.2.2.4`	affected	—
`20.7.1.0.2`	affected	—
`20.3.5.0.8`	affected	—
`20.3.5.0.9`	affected	—
`20.3.5.0.7`	affected	—
`20.3.6`	affected	—
`20.3.7`	affected	—
`20.3.5.1`	affected	—
`20.3.4.3`	affected	—
`20.3.3.2`	affected	—
`20.3.7.1`	affected	—
`20.3.4.0.25`	affected	—
`20.6.2.2.4`	affected	—
`20.6.1.2`	affected	—
`20.3.4.0.26`	affected	—
`20.3.7.2`	affected	—
`20.3.8`	affected	—

Cisco

Cisco SD-WAN vContainer

unknown

Version	Status	Constraints
`18.4.5`	affected	—
`20.1.12`	affected	—
`18.3.6`	affected	—
`19.2.1`	affected	—
`19.3.0`	affected	—
`20.1.1`	affected	—
`19.2.2`	affected	—
`18.3.8`	affected	—
`18.4.3`	affected	—
`18.4.4`	affected	—
`18.4.302`	affected	—
`19.1.0`	affected	—
`18.4.303`	affected	—
`19.2.0`	affected	—
`19.2.098`	affected	—
`17.2.10`	affected	—
`18.3.7`	affected	—
`18.3.1`	affected	—
`19.2.099`	affected	—
`19.2.097`	affected	—
`18.3.4`	affected	—
`18.2.0`	affected	—
`18.3.5`	affected	—
`18.4.1`	affected	—
`17.2.5`	affected	—
`17.2.7`	affected	—
`17.2.8`	affected	—
`17.2.9`	affected	—
`18.4.0`	affected	—
`17.2.6`	affected	—
`18.3.0`	affected	—
`17.2.4`	affected	—
`18.3.3`	affected	—
`19.2.3`	affected	—
`20.3.1`	affected	—
`20.1.2`	affected	—

Cisco

Cisco SD-WAN vEdge Cloud

unknown

Version	Status	Constraints
`19.2.1`	affected	—
`20.1.12`	affected	—
`18.4.4`	affected	—
`19.3.0`	affected	—
`18.3.8`	affected	—
`19.2.2`	affected	—
`20.1.1`	affected	—
`18.3.6`	affected	—
`18.4.3`	affected	—
`18.4.302`	affected	—
`18.4.5`	affected	—
`18.4.303`	affected	—
`19.2.098`	affected	—
`19.1.0`	affected	—
`17.2.10`	affected	—
`19.0.1a`	affected	—
`19.2.099`	affected	—
`18.3.7`	affected	—
`19.2.097`	affected	—
`18.3.1`	affected	—
`19.2.0`	affected	—
`17.2.9`	affected	—
`18.3.4`	affected	—
`18.2.0`	affected	—
`18.4.1`	affected	—
`17.2.5`	affected	—
`18.4.0`	affected	—
`18.3.5`	affected	—
`18.3.3`	affected	—
`17.2.7`	affected	—
`17.2.6`	affected	—
`17.2.8`	affected	—
`18.3.0`	affected	—
`17.2.4`	affected	—
`19.2.3`	affected	—
`20.3.1`	affected	—
`20.1.2`	affected	—
`19.2.929`	affected	—
`19.2.31`	affected	—
`20.3.2`	affected	—
`19.2.32`	affected	—
`18.4.6`	affected	—
`20.4.1`	affected	—
`19.2.4`	affected	—
`20.4.1.1`	affected	—
`20.3.3`	affected	—
`20.5.1`	affected	—
`20.1.3`	affected	—
`20.4.1.2`	affected	—
`20.4.2`	affected	—
`20.3.4`	affected	—
`20.6.1`	affected	—
`20.6.2`	affected	—
`20.7.1`	affected	—
`20.3.5`	affected	—
`20.6.3`	affected	—
`20.7.2`	affected	—
`20.6.4`	affected	—
`20.3.6`	affected	—
`20.6.5`	affected	—
`20.3.7`	affected	—
`20.4.2.3`	affected	—
`20.3.4.3`	affected	—
`20.6.4.1`	affected	—
`20.6.3.2`	affected	—
`20.3.5.1`	affected	—
`20.6.5.2`	affected	—
`20.3.7.1`	affected	—
`20.3.3.2`	affected	—
`20.6.1.2`	affected	—
`20.1.3.1`	affected	—
`20.6.5.3`	affected	—
`20.6.3.3`	affected	—
`20.3.7.2`	affected	—
`20.6.5.4`	affected	—
`20.3.8`	affected	—
`20.6.6`	affected	—
`20.6.7`	affected	—
`20.6.8`	affected	—

Cisco

Cisco SD-WAN vEdge Router

unknown

Version	Status	Constraints
`18.4.303`	affected	—
`18.3.7`	affected	—
`19.3.0`	affected	—
`18.2.0`	affected	—
`20.1.12`	affected	—
`19.2.099`	affected	—
`17.2.10`	affected	—
`18.3.3`	affected	—
`18.3.6`	affected	—
`19.0.0`	affected	—
`17.2.6`	affected	—
`18.4.0`	affected	—
`19.1.01`	affected	—
`19.2.098`	affected	—
`18.3.1`	affected	—
`18.4.302`	affected	—
`19.2.2`	affected	—
`18.3.5`	affected	—
`17.2.9`	affected	—
`19.1.0`	affected	—
`20.1.11`	affected	—
`19.2.097`	affected	—
`18.4.5`	affected	—
`17.2.5`	affected	—
`17.2.8`	affected	—
`18.3.8`	affected	—
`18.3.0`	affected	—
`18.4.3`	affected	—
`18.4.4`	affected	—
`19.2.1`	affected	—
`17.2.4`	affected	—
`18.3.4`	affected	—
`19.0.1a`	affected	—
`20.1.1`	affected	—
`17.2.7`	affected	—
`18.4.1`	affected	—
`19.2.0`	affected	—
`19.2.3`	affected	—
`20.3.1`	affected	—
`20.1.2`	affected	—
`19.2.929`	affected	—
`19.2.31`	affected	—
`20.3.2`	affected	—
`19.2.32`	affected	—
`18.4.6`	affected	—
`20.4.1`	affected	—
`19.2.4`	affected	—
`20.4.1.1`	affected	—
`20.3.3`	affected	—
`20.5.1`	affected	—
`20.1.3`	affected	—
`20.4.1.2`	affected	—
`20.4.2`	affected	—
`20.3.4`	affected	—
`20.6.1`	affected	—
`20.6.2`	affected	—
`20.7.1`	affected	—
`20.7.1.2`	affected	—
`20.3.5`	affected	—
`20.6.3`	affected	—
`20.7.2`	affected	—
`20.6.4`	affected	—
`20.3.6`	affected	—
`20.6.5`	affected	—
`20.3.7`	affected	—
`20.6.5.1`	affected	—
`20.3.3.2`	affected	—
`20.6.4.1`	affected	—
`20.6.3.2`	affected	—
`20.3.4.3`	affected	—
`20.6.5.2`	affected	—
`20.3.7.1`	affected	—
`20.3.5.1`	affected	—
`20.6.1.2`	affected	—
`20.6.5.3`	affected	—
`20.6.3.3`	affected	—
`20.3.7.2`	affected	—
`20.6.5.4`	affected	—
`20.3.8`	affected	—
`20.6.6`	affected	—
`20.6.7`	affected	—
`20.6.8`	affected	—

Configuration 1 [-]

OR	cpe:2.3:a:cisco:catalyst_sd-wan_manager::::::::
	cpe:2.3:a:cisco:catalyst_sd-wan_manager::::::::
	cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.8:::::::*
	cpe:2.3:a:cisco:sd-wan_vbond_orchestrator::::::::
	cpe:2.3:a:cisco:sd-wan_vbond_orchestrator::::::::
	cpe:2.3:a:cisco:sd-wan_vbond_orchestrator:20.8:::::::*
	cpe:2.3:a:cisco:sd-wan_vedge_cloud::::::::
	cpe:2.3:a:cisco:sd-wan_vedge_cloud::::::::
	cpe:2.3:a:cisco:sd-wan_vedge_cloud:20.8:::::::*
	cpe:2.3:a:cisco:sd-wan_vsmart_controller::::::::
	cpe:2.3:a:cisco:sd-wan_vsmart_controller::::::::
	cpe:2.3:a:cisco:sd-wan_vsmart_controller:20.8:::::::*

Configuration 2 [-]

AND

OR	cpe:2.3:a:cisco:sd-wan::::::::
	cpe:2.3:a:cisco:sd-wan::::::::
	cpe:2.3:a:cisco:sd-wan:20.8:::::::*

OR	cpe:2.3:a:cisco:catalyst_8000v_edge:-:::::::*
	cpe:2.3:a:cisco:catalyst_cg418-e:-:::::::*
	cpe:2.3:a:cisco:catalyst_cg522-e:-:::::::*
	cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1101_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1111x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:111x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1120_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1131_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1160_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4000_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4221_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321\/k9-rf_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321\/k9-ws_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321\/k9_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4321_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331\/k9-rf_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331\/k9-ws_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331\/k9_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4331_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351\/k9-rf_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351\/k9-ws_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351\/k9_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4351_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4431_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4451-x_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4451_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:4461_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:8101-32fh:-:::::::*
	cpe:2.3:h:cisco:8101-32h:-:::::::*
	cpe:2.3:h:cisco:8102-64h:-:::::::*
	cpe:2.3:h:cisco:8201:-:::::::*
	cpe:2.3:h:cisco:8201-32fh:-:::::::*
	cpe:2.3:h:cisco:8202:-:::::::*
	cpe:2.3:h:cisco:8804:-:::::::*
	cpe:2.3:h:cisco:8808:-:::::::*
	cpe:2.3:h:cisco:8812:-:::::::*
	cpe:2.3:h:cisco:8818:-:::::::*
	cpe:2.3:h:cisco:8831:-:::::::*
	cpe:2.3:h:cisco:asr_1000:-:::::::*
	cpe:2.3:h:cisco:asr_1000-x:-:::::::*
	cpe:2.3:h:cisco:asr_1001:-:::::::*
	cpe:2.3:h:cisco:asr_1001-hx:-:::::::*
	cpe:2.3:h:cisco:asr_1001-hx_r:-:::::::*
	cpe:2.3:h:cisco:asr_1001-x:-:::::::*
	cpe:2.3:h:cisco:asr_1001-x_r:-:::::::*
	cpe:2.3:h:cisco:asr_1002:-:::::::*
	cpe:2.3:h:cisco:asr_1002-hx:-:::::::*
	cpe:2.3:h:cisco:asr_1002-hx_r:-:::::::*
	cpe:2.3:h:cisco:asr_1002-x:-:::::::*
	cpe:2.3:h:cisco:asr_1002-x_r:-:::::::*
	cpe:2.3:h:cisco:asr_1004:-:::::::*
	cpe:2.3:h:cisco:asr_1006:-:::::::*
	cpe:2.3:h:cisco:asr_1006-x:-:::::::*
	cpe:2.3:h:cisco:asr_1009-x:-:::::::*
cpe:2.3:h:cisco:asr_1013:-:::::::*
cpe:2.3:h:cisco:asr_1023:-:::::::*
cpe:2.3:h:cisco:catalyst_8200:-:::::::*
cpe:2.3:h:cisco:catalyst_8300:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-1n1s-4t2x:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-1n1s-6t:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-2n2s-4t2x:-:::::::*
cpe:2.3:h:cisco:catalyst_8300-2n2s-6t:-:::::::*
cpe:2.3:h:cisco:catalyst_8500:-:::::::*
cpe:2.3:h:cisco:catalyst_8500-4qc:-:::::::*
cpe:2.3:h:cisco:catalyst_8500l:-:::::::*
cpe:2.3:h:cisco:catalyst_8510csr:-:::::::*
cpe:2.3:h:cisco:catalyst_8510msr:-:::::::*
cpe:2.3:h:cisco:catalyst_8540csr:-:::::::*
cpe:2.3:h:cisco:catalyst_8540msr:-:::::::*

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2022-26025	Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabilities by running a malicious command on the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since Feb. 25, 2026.

The EPSS score is 0.00428.

Exploitation active

Automatable no

Technical Impact total

References

Link	Providers
https://github.com/orangecertcc/security-research/security/advisories/GHSA-wmjv-552v-pxjc
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-20775

History

Thu, 26 Feb 2026 16:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Cisco sd-wan Vedge Cloud
CPEs		cpe:2.3:a:cisco:sd-wan_vedge_cloud:::::::: cpe:2.3:a:cisco:sd-wan_vedge_cloud:20.8:::::::*
Vendors & Products		Cisco sd-wan Vedge Cloud

Wed, 25 Feb 2026 22:15:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 25 Feb 2026 21:00:00 +0000

Type	Values Removed	Values Added
Description	Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. These vulnerabilities are due to improper access controls on commands within the application CLI. An attacker could exploit these vulnerabilities by running a malicious command on the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.	A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. This vulnerability is due to improper access controls on commands within the application CLI. An attacker could exploit this vulnerability by running a maliciously crafted command on the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF
Title	Cisco SD-WAN Software Privilege Escalation Vulnerabilities	Cisco SD-WAN Software Privilege Escalation Vulnerability
References		https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF

Wed, 25 Feb 2026 18:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-20775

Wed, 25 Feb 2026 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-02-25T00:00:00+00:00', 'dueDate': '2026-02-27T00:00:00+00:00'}`

Wed, 06 Nov 2024 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Subscriptions

Cisco 1100-4g Integrated Services Router 1100-4p Integrated Services Router 1100-6g Integrated Services Router 1100-8p Integrated Services Router 1100 Integrated Services Router 1101-4p Integrated Services Router 1101 Integrated Services Router 1109-2p Integrated Services Router 1109-4p Integrated Services Router 1109 Integrated Services Router 1111x-8p Integrated Services Router 1111x Integrated Services Router 111x Integrated Services Router 1120 Integrated Services Router 1131 Integrated Services Router 1160 Integrated Services Router 4000 Integrated Services Router 4221 Integrated Services Router 4321\/k9-rf Integrated Services Router 4321\/k9-ws Integrated Services Router 4321\/k9 Integrated Services Router 4321 Integrated Services Router 4331\/k9-rf Integrated Services Router 4331\/k9-ws Integrated Services Router 4331\/k9 Integrated Services Router 4331 Integrated Services Router 4351\/k9-rf Integrated Services Router 4351\/k9-ws Integrated Services Router 4351\/k9 Integrated Services Router 4351 Integrated Services Router 4431 Integrated Services Router 4451-x Integrated Services Router 4451 Integrated Services Router 4461 Integrated Services Router 8101-32fh 8101-32h 8102-64h 8201 8201-32fh 8202 8804 8808 8812 8818 8831 Asr 1000 Asr 1000-x Asr 1001 Asr 1001-hx Asr 1001-hx R Asr 1001-x Asr 1001-x R Asr 1002 Asr 1002-hx Asr 1002-hx R Asr 1002-x Asr 1002-x R Asr 1004 Asr 1006 Asr 1006-x Asr 1009-x Asr 1013 Asr 1023 Catalyst 8000v Edge Catalyst 8200 Catalyst 8300 Catalyst 8300-1n1s-4t2x Catalyst 8300-1n1s-6t Catalyst 8300-2n2s-4t2x Catalyst 8300-2n2s-6t Catalyst 8500 Catalyst 8500-4qc Catalyst 8500l Catalyst 8510csr Catalyst 8510msr Catalyst 8540csr Catalyst 8540msr Catalyst Cg418-e Catalyst Cg522-e Catalyst Sd-wan Manager Sd-wan Sd-wan Vbond Orchestrator Sd-wan Vedge Cloud Sd-wan Vsmart Controller

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2022-09-30T18:45:26.687Z

Updated: 2026-03-02T13:12:09.231Z

Reserved: 2021-11-02T00:00:00.000Z

Link: CVE-2022-20775

Vulnrichment

Updated: 2024-08-03T02:24:49.634Z

NVD

Status : Analyzed

Published: 2022-09-30T19:15:11.467

Modified: 2026-02-26T16:20:09.420

Link: CVE-2022-20775

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation active

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object