From securityaffairs.com
Cisco addressed a critical unauthenticated REST API access vulnerability, tracked as CVE-2023-20214 (CVSS Score 9.1), impacting its SD-WAN vManage.
An unauthenticated, remote attacker can exploit the vulnerability to gain read permissions or limited write permissions to the configuration of an affected instance.
“This vulnerability is due to insufficient request validation when using the REST API feature. An attacker could exploit this vulnerability by sending a crafted API request to an affected vManage instance.” reads the advisory published by the company. “A successful exploit could allow the attacker to retrieve information from and send information to the configuration of the affected Cisco vManage instance.”
Cisco SD-WAN vManage is a central management platform designed for Cisco’s Software-Defined Wide Area Network (SD-WAN) solution. SD-WAN technology is used to connect and manage networks across multiple locations, providing improved performance, scalability, and flexibility compared to traditional WAN architectures.