What is CVE-2020-26071?

CVE-2020-26071 is a high-severity vulnerability in Cisco Catalyst Sd-wan Manager, classified under Path Traversal. CVSS score: 8.4/10. Published 2024-11-18.

How severe is CVE-2020-26071?

High severity. CVSS v3 base score is 8.4 out of 10.

Path Traversal in Cisco Catalyst Sd-wan Manager

CVE-2020-26071

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to create or overwrite arbitrary files on an affected device, which could result in a denial of service (DoS) condition. The vulnerabili…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.001 (33.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.4 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H/RL:X/RC:X/E:X.

Affected products

Cisco Catalyst Sd-wan Manager — versions 20.1.12, 19.2.1, 18.4.4
Cisco Sd-wan Vcontainer — versions 18.4.5, 20.1.12, 18.3.6
Cisco Sd-wan Vedge Cloud — versions 19.2.1, 20.1.12, 18.4.4
Cisco Sd-wan Vedge Router — versions 18.4.303, 18.3.7, 19.3.0

Weakness classification (CWE)

CWE-22 — Path Traversal

References

cisco-sa-vsoln-arbfile-gtsEYxns

Frequently asked questions

What is CVE-2020-26071?: CVE-2020-26071 is a high-severity vulnerability in Cisco Catalyst Sd-wan Manager, classified under Path Traversal. CVSS score: 8.4/10. Published 2024-11-18.
How severe is CVE-2020-26071?: High severity. CVSS v3 base score is 8.4 out of 10.