{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2020-26071", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2020-09-24T00:00:00.000Z", "datePublished": "2024-11-18T16:05:35.221Z", "dateUpdated": "2024-11-18T16:23:51.429Z"}, "containers": {"cna": {"title": "Cisco SD-WAN vEdge Arbitrary File Creation Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H/RL:X/RC:X/E:X", "baseScore": 8.4, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service (DoS) condition.\r\nThe vulnerability is due to insufficient input validation for specific commands. An attacker could exploit this vulnerability by including crafted arguments to those specific commands. A successful exploit could allow the attacker to create or overwrite arbitrary files on the affected device, which could result in a DoS condition.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vsoln-arbfile-gtsEYxns", "name": "cisco-sa-vsoln-arbfile-gtsEYxns"}], "exploits": [{"lang": "en", "value": "The Cisco\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-vsoln-arbfile-gtsEYxns", "discovery": "INTERNAL", "defects": ["CSCvv09807"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", "type": "cwe", "cweId": "CWE-22"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Catalyst SD-WAN Manager", "versions": [{"version": "20.1.12", "status": "affected"}, {"version": "19.2.1", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "18.4.5", "status": "affected"}, {"version": "20.1.1.1", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "18.3.6", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "19.0.0", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "18.4.303", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "19.2.098", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "18.3.6.1", "status": "affected"}, {"version": "19.0.1a", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "18.3.3.1", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "17.2.6", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "18.3.1.1", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "18.4.0.1", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "17.2.4", "status": "affected"}, {"version": "18.3.0", "status": "affected"}, {"version": "19.2.3", "status": "affected"}, {"version": "18.4.501_ES", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco SD-WAN vContainer", "versions": [{"version": "18.4.5", "status": "affected"}, {"version": "20.1.12", "status": "affected"}, {"version": "18.3.6", "status": "affected"}, {"version": "19.2.1", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "18.4.303", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "19.2.098", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "17.2.6", "status": "affected"}, {"version": "18.3.0", "status": "affected"}, {"version": "17.2.4", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "19.2.3", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco SD-WAN vEdge Cloud", "versions": [{"version": "19.2.1", "status": "affected"}, {"version": "20.1.12", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "18.3.6", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "18.4.5", "status": "affected"}, {"version": "18.4.303", "status": "affected"}, {"version": "19.2.098", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "19.0.1a", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "17.2.6", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "18.3.0", "status": "affected"}, {"version": "17.2.4", "status": "affected"}, {"version": "19.2.3", "status": "affected"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco SD-WAN vEdge Router", "versions": [{"version": "18.4.303", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "20.1.12", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "18.3.6", "status": "affected"}, {"version": "19.0.0", "status": "affected"}, {"version": "17.2.6", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "19.1.01", "status": "affected"}, {"version": "19.2.098", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "20.1.11", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "18.4.5", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "18.3.0", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "19.2.1", "status": "affected"}, {"version": "17.2.4", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "19.0.1a", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "19.2.3", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-11-18T16:05:35.221Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-18T16:23:33.627962Z", "id": "CVE-2020-26071", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-18T16:23:51.429Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2020-26071", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-18T16:23:33.627962Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-18T16:23:37.770Z"}}], "cna": {"title": "Cisco SD-WAN vEdge Arbitrary File Creation Vulnerability", "source": {"defects": ["CSCvv09807"], "advisory": "cisco-sa-vsoln-arbfile-gtsEYxns", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H/RL:X/RC:X/E:X", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Catalyst SD-WAN Manager", "versions": [{"status": "affected", "version": "20.1.12"}, {"status": "affected", "version": "19.2.1"}, {"status": "affected", "version": "18.4.4"}, {"status": "affected", "version": "18.4.5"}, {"status": "affected", "version": "20.1.1.1"}, {"status": "affected", "version": "20.1.1"}, {"status": "affected", "version": "19.3.0"}, {"status": "affected", "version": "19.2.2"}, {"status": "affected", "version": "19.2.099"}, {"status": "affected", "version": "18.3.6"}, {"status": "affected", "version": "18.3.7"}, {"status": "affected", "version": "19.2.0"}, {"status": "affected", "version": "18.3.8"}, {"status": "affected", "version": "19.0.0"}, {"status": "affected", "version": "19.1.0"}, {"status": "affected", "version": "18.4.302"}, {"status": "affected", "version": "18.4.303"}, {"status": "affected", "version": "19.2.097"}, {"status": "affected", "version": "19.2.098"}, {"status": "affected", "version": "17.2.10"}, {"status": "affected", "version": "18.3.6.1"}, {"status": "affected", "version": "19.0.1a"}, {"status": "affected", "version": "18.2.0"}, {"status": "affected", "version": "18.4.3"}, {"status": "affected", "version": "18.4.1"}, {"status": "affected", "version": "17.2.8"}, {"status": "affected", "version": "18.3.3.1"}, {"status": "affected", "version": "18.4.0"}, {"status": "affected", "version": "18.3.1"}, {"status": "affected", "version": "17.2.6"}, {"status": "affected", "version": "17.2.9"}, {"status": "affected", "version": "18.3.4"}, {"status": "affected", "version": "17.2.5"}, {"status": "affected", "version": "18.3.1.1"}, {"status": "affected", "version": "18.3.5"}, {"status": "affected", "version": "18.4.0.1"}, {"status": "affected", "version": "18.3.3"}, {"status": "affected", "version": "17.2.7"}, {"status": "affected", "version": "17.2.4"}, {"status": "affected", "version": "18.3.0"}, {"status": "affected", "version": "19.2.3"}, {"status": "affected", "version": "18.4.501_ES"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco SD-WAN vContainer", "versions": [{"status": "affected", "version": "18.4.5"}, {"status": "affected", "version": "20.1.12"}, {"status": "affected", "version": "18.3.6"}, {"status": "affected", "version": "19.2.1"}, {"status": "affected", "version": "19.3.0"}, {"status": "affected", "version": "20.1.1"}, {"status": "affected", "version": "19.2.2"}, {"status": "affected", "version": "18.3.8"}, {"status": "affected", "version": "18.4.3"}, {"status": "affected", "version": "18.4.4"}, {"status": "affected", "version": "18.4.302"}, {"status": "affected", "version": "19.1.0"}, {"status": "affected", "version": "18.4.303"}, {"status": "affected", "version": "19.2.0"}, {"status": "affected", "version": "19.2.098"}, {"status": "affected", "version": "17.2.10"}, {"status": "affected", "version": "18.3.7"}, {"status": "affected", "version": "18.3.1"}, {"status": "affected", "version": "19.2.099"}, {"status": "affected", "version": "19.2.097"}, {"status": "affected", "version": "18.3.4"}, {"status": "affected", "version": "18.2.0"}, {"status": "affected", "version": "18.3.5"}, {"status": "affected", "version": "18.4.1"}, {"status": "affected", "version": "17.2.5"}, {"status": "affected", "version": "17.2.7"}, {"status": "affected", "version": "17.2.8"}, {"status": "affected", "version": "17.2.9"}, {"status": "affected", "version": "18.4.0"}, {"status": "affected", "version": "17.2.6"}, {"status": "affected", "version": "18.3.0"}, {"status": "affected", "version": "17.2.4"}, {"status": "affected", "version": "18.3.3"}, {"status": "affected", "version": "19.2.3"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco SD-WAN vEdge Cloud", "versions": [{"status": "affected", "version": "19.2.1"}, {"status": "affected", "version": "20.1.12"}, {"status": "affected", "version": "18.4.4"}, {"status": "affected", "version": "19.3.0"}, {"status": "affected", "version": "18.3.8"}, {"status": "affected", "version": "19.2.2"}, {"status": "affected", "version": "20.1.1"}, {"status": "affected", "version": "18.3.6"}, {"status": "affected", "version": "18.4.3"}, {"status": "affected", "version": "18.4.302"}, {"status": "affected", "version": "18.4.5"}, {"status": "affected", "version": "18.4.303"}, {"status": "affected", "version": "19.2.098"}, {"status": "affected", "version": "19.1.0"}, {"status": "affected", "version": "17.2.10"}, {"status": "affected", "version": "19.0.1a"}, {"status": "affected", "version": "19.2.099"}, {"status": "affected", "version": "18.3.7"}, {"status": "affected", "version": "19.2.097"}, {"status": "affected", "version": "18.3.1"}, {"status": "affected", "version": "19.2.0"}, {"status": "affected", "version": "17.2.9"}, {"status": "affected", "version": "18.3.4"}, {"status": "affected", "version": "18.2.0"}, {"status": "affected", "version": "18.4.1"}, {"status": "affected", "version": "17.2.5"}, {"status": "affected", "version": "18.4.0"}, {"status": "affected", "version": "18.3.5"}, {"status": "affected", "version": "18.3.3"}, {"status": "affected", "version": "17.2.7"}, {"status": "affected", "version": "17.2.6"}, {"status": "affected", "version": "17.2.8"}, {"status": "affected", "version": "18.3.0"}, {"status": "affected", "version": "17.2.4"}, {"status": "affected", "version": "19.2.3"}], "defaultStatus": "unknown"}, {"vendor": "Cisco", "product": "Cisco SD-WAN vEdge Router", "versions": [{"status": "affected", "version": "18.4.303"}, {"status": "affected", "version": "18.3.7"}, {"status": "affected", "version": "19.3.0"}, {"status": "affected", "version": "18.2.0"}, {"status": "affected", "version": "20.1.12"}, {"status": "affected", "version": "19.2.099"}, {"status": "affected", "version": "17.2.10"}, {"status": "affected", "version": "18.3.3"}, {"status": "affected", "version": "18.3.6"}, {"status": "affected", "version": "19.0.0"}, {"status": "affected", "version": "17.2.6"}, {"status": "affected", "version": "18.4.0"}, {"status": "affected", "version": "19.1.01"}, {"status": "affected", "version": "19.2.098"}, {"status": "affected", "version": "18.3.1"}, {"status": "affected", "version": "18.4.302"}, {"status": "affected", "version": "19.2.2"}, {"status": "affected", "version": "18.3.5"}, {"status": "affected", "version": "17.2.9"}, {"status": "affected", "version": "19.1.0"}, {"status": "affected", "version": "20.1.11"}, {"status": "affected", "version": "19.2.097"}, {"status": "affected", "version": "18.4.5"}, {"status": "affected", "version": "17.2.5"}, {"status": "affected", "version": "17.2.8"}, {"status": "affected", "version": "18.3.8"}, {"status": "affected", "version": "18.3.0"}, {"status": "affected", "version": "18.4.3"}, {"status": "affected", "version": "18.4.4"}, {"status": "affected", "version": "19.2.1"}, {"status": "affected", "version": "17.2.4"}, {"status": "affected", "version": "18.3.4"}, {"status": "affected", "version": "19.0.1a"}, {"status": "affected", "version": "20.1.1"}, {"status": "affected", "version": "17.2.7"}, {"status": "affected", "version": "18.4.1"}, {"status": "affected", "version": "19.2.0"}, {"status": "affected", "version": "19.2.3"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vsoln-arbfile-gtsEYxns", "name": "cisco-sa-vsoln-arbfile-gtsEYxns"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service (DoS) condition.\r\nThe vulnerability is due to insufficient input validation for specific commands. An attacker could exploit this vulnerability by including crafted arguments to those specific commands. A successful exploit could allow the attacker to create or overwrite arbitrary files on the affected device, which could result in a DoS condition.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-22", "description": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-11-18T16:05:35.221Z"}}}, "cveMetadata": {"cveId": "CVE-2020-26071", "state": "PUBLISHED", "dateUpdated": "2024-11-18T16:23:51.429Z", "dateReserved": "2020-09-24T00:00:00.000Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2024-11-18T16:05:35.221Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "A0D5F32C-BFC1-49CC-BE96-920FCBE567B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "F621202C-3851-4D7E-BFA2-DABB08E73DB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "38132BE5-528B-472E-9249-B226C0DE1C80", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "37C817B2-DDB9-4CAF-96C9-776482A8597D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "AC5D29FD-0917-4C1F-AE75-2D63F5C9C58D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.9:*:*:*:*:*:*:*", "matchCriteriaId": "1E3090C4-15E6-4746-B0D2-27665AB91B08", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.10:*:*:*:*:*:*:*", "matchCriteriaId": "04E924CC-3161-436D-93F0-066F76172F55", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "7ED059CD-AD0A-4748-8390-8CDCF4C4D1CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "6990E97D-30E9-42A9-AE6A-CC597DF75B0B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "15B60BA4-EA02-4D0D-82C3-1B08016EF5AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "E9DC51F7-72D4-4593-8DDE-8AA3955BB826", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "B047A011-1C27-4D86-99C1-BFCDC7F04A9B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "DADEA8FB-3298-4534-B65E-81060E3DB45A", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "F4C6DF1F-4995-4486-8F90-9EFD6417ABA6", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "6D249954-93E0-4124-B9BA-84B9F34D7CB1", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "5B24396C-3732-4CF8-B01A-62C77D20E7FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "B7F20EBE-DFDF-4996-93D1-28EE776BC777", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.7:*:*:*:*:*:*:*", "matchCriteriaId": "3DF09CAB-CA1B-428E-9A0B-AADACE9201A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.8:*:*:*:*:*:*:*", "matchCriteriaId": "D99ED480-C206-48DD-9DF3-FC60D91B98A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "4DC515B6-27A3-4723-9792-2BA42EF63E44", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "DEC0BBDA-FAE5-4AF7-81C8-83041A58E8E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "7A066E28-31B0-46C7-ABB8-F5D1F3A303C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "C8F536CC-29D6-401E-92C5-964FDBDCCE65", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "9139593A-9414-488D-AA3A-5560C643587D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.5:*:*:*:*:*:*:*", "matchCriteriaId": "07BFB47E-F456-4782-98D7-68D02500FDD3", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.302:*:*:*:*:*:*:*", "matchCriteriaId": "33BEBE47-AF47-4994-871D-5969270EE5AD", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.303:*:*:*:*:*:*:*", "matchCriteriaId": "A27094E7-E6F3-47CA-A90A-86FEA2F1BE33", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.501_es:*:*:*:*:*:*:*", "matchCriteriaId": "9B8958D8-389F-4FB6-8F29-621608FB2B32", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "37B66141-99E6-4D7D-8D11-18E9B34B002D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.0.1a:*:*:*:*:*:*:*", "matchCriteriaId": "40177056-0438-4BFF-ABD3-2328FE585800", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "6D6D47A0-43A2-4F9F-830B-B2FB79E779A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "87E7B932-950A-4573-832F-8477FABA5929", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "A1711A70-5931-4C1F-B522-46AD2E5D7C51", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "FE41B8AE-8F1E-4116-BDDC-65B913AD448E", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "7EC80219-C760-4CA8-B360-7B6545F502C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.097:*:*:*:*:*:*:*", "matchCriteriaId": "34886EDF-1C10-4F57-A82D-FF1AF668E2C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.098:*:*:*:*:*:*:*", "matchCriteriaId": "B8EE5ECA-5D13-4C29-9396-95FFBEC4236A", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.099:*:*:*:*:*:*:*", "matchCriteriaId": "1D7B3B10-6936-4352-9EE7-561BB1918769", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "491BD04C-85BE-4766-9965-59744D2639CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "545F75A3-451C-4993-98AE-51C23EF49927", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "1BB0DD6B-6C4D-4FF4-97AB-815A4566320F", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.12:*:*:*:*:*:*:*", "matchCriteriaId": "482DC851-7E33-4487-8219-6675091FD7C7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service (DoS) condition.\r\nThe vulnerability is due to insufficient input validation for specific commands. An attacker could exploit this vulnerability by including crafted arguments to those specific commands. A successful exploit could allow the attacker to create or overwrite arbitrary files on the affected device, which could result in a DoS condition.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."}, {"lang": "es", "value": "Una vulnerabilidad en la CLI del software Cisco SD-WAN podr\u00eda permitir que un atacante local autenticado cree o sobrescriba archivos arbitrarios en un dispositivo afectado, lo que podr\u00eda generar una condici\u00f3n de denegaci\u00f3n de servicio (DoS). La vulnerabilidad se debe a una validaci\u00f3n de entrada insuficiente para comandos espec\u00edficos. Un atacante podr\u00eda aprovechar esta vulnerabilidad al incluir argumentos manipulados para esos comandos espec\u00edficos. Una explotaci\u00f3n exitosa podr\u00eda permitir que el atacante cree o sobrescriba archivos arbitrarios en el dispositivo afectado, lo que podr\u00eda generar una condici\u00f3n de denegaci\u00f3n de servicio (DoS). Cisco ha publicado actualizaciones de software que solucionan esta vulnerabilidad. No existen workarounds que solucionen esta vulnerabilidad."}], "id": "CVE-2020-26071", "lastModified": "2025-08-04T14:42:24.743", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.0, "impactScore": 5.8, "source": "psirt@cisco.com", "type": "Primary"}]}, "published": "2024-11-18T16:15:05.710", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vsoln-arbfile-gtsEYxns"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "psirt@cisco.com", "type": "Primary"}]}

{}