Impact
A vulnerability in Cisco Catalyst SD-WAN Manager allows an unauthenticated, remote attacker to view sensitive information on the underlying operating system due to insufficient file system restrictions. The flaw also permits an authenticated attacker with netadmin privileges to access the vshell, enabling reading of protected OS files. This weakness corresponds to CWE-200 and results in confidentiality compromise with no evidence of code execution or privilege escalation.
Affected Systems
Cisco Catalyst SD-WAN Manager, especially versions matching the specified CPEs such as 20.12.6, is affected. All installations without the vendor’s latest fix remain vulnerable.
Risk and Exploitability
The CVSS score of 6.5 denotes medium severity, while the EPSS score of 10% indicates a relatively high likelihood of exploitation. The vulnerability is listed in CISA’s KEV catalog. The attack vector is remote, leveraging insufficient file system permissions or the vshell interface, and the impact is limited to information disclosure.
OpenCVE Enrichment