A vulnerability in the web management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct directory traversal attacks and obtain read and write access to sensitive files on a targeted system. The vulnerability is due to a lack of proper validation of files that are uploaded to an affected device. An attacker could exploit this vulnerability by uploading a crafted file to an affected system. An exploit could allow the attacker to view or modify arbitrary files on the targeted system.
Metrics
Affected Vendors & Products
References
History
Fri, 15 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2020-07-16T17:22:00.219642Z
Updated: 2024-11-15T16:52:35.766Z
Reserved: 2019-12-12T00:00:00
Link: CVE-2020-3381
Vulnrichment
Updated: 2024-08-04T07:30:58.206Z
NVD
Status : Modified
Published: 2020-07-16T18:15:18.907
Modified: 2024-11-21T05:30:55.140
Link: CVE-2020-3381
Redhat
No data.