What is CVE-2019-1650?

CVE-2019-1650 is a high-severity vulnerability in Cisco Sd-wan Solution, classified under Improper Input Validation. CVSS score: 8.8/10. Published 2019-01-24.

How severe is CVE-2019-1650?

High severity. CVSS v3 base score is 8.8 out of 10.

Improper input validation in Cisco Sd-wan Solution

CVE-2019-1650

A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.010 (77.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Cisco Sd-wan Solution — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

106716 (vdb-entry, x_refsource_BID)
20190123 Cisco SD-WAN Solution Arbitrary File Overwrite Vulnerability (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2019-1650?: CVE-2019-1650 is a high-severity vulnerability in Cisco Sd-wan Solution, classified under Improper Input Validation. CVSS score: 8.8/10. Published 2019-01-24.
How severe is CVE-2019-1650?: High severity. CVSS v3 base score is 8.8 out of 10.