Original release date: March 19, 2020
Cisco has released security updates to address multiple vulnerabilities in SD-WAN Solution software. An attacker could exploit these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories webpage.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco advisories and apply the necessary updates.
- SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-sdwpresc-ySJGvE9
- SD-WAN Solution Command Injection Vulnerability cisco-sa-sdwclici-cvrQpH9v
- SD-WAN Solution Buffer Overflow Vulnerability cisco-sa-sdwanbo-QKcABnS2
This product is provided subject to this Notification and this Privacy & Use policy.