CVE-2020-3437

moderate-risk
Published 2020-07-16

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to read arbitrary files on the underlying filesystem of the device. The vulnerability is due to insufficient file scope limiting. An attacker could exploit this vulnerability by creating a specific file reference on the filesystem and then accessing it through the web-based management interface. A successful exploit could allow the attacker to read arbitrary files from the filesystem of the underlying operating system.

Do I need to act?

~
1.2% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.5/10 Medium
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Cisco

References (4)

Exploit http://packetstormsecurity.com/files/162958/Cisco-SD-WAN-vManage-19.2.2-Remote-R...
Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-v...
Exploit http://packetstormsecurity.com/files/162958/Cisco-SD-WAN-vManage-19.2.2-Remote-R...
Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-v...
33
/ 100
moderate-risk
Severity 24/34 · High
Exploitability 4/34 · Minimal
Exposure 5/34 · Minimal