Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2019-1950

A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local attacker to gain unauthorized access to an affected device. The vulnerability is due to the existence of default credentials within the default configuration of an affected device. An attacker who has access to an affected device could log in with elevated privileges. A successful exploit could allow the attacker to take complete control of the device. This vulnerability affects Cisco devices that are running Cisco IOS XE SD-WAN Software releases 16.11 and earlier.

SeverityHIGH
CVSS8.4
CWECWE-255
KEV
Published
Modified

Related Products

Product Advisory Evidence
Cisco IOS cisco-sa-sd-wan-cred-EVGSF259 Cisco OpenVuln
Cisco IOS XE Catalyst SD-WAN cisco-sa-sd-wan-cred-EVGSF259 Cisco OpenVuln
Cisco Catalyst 9600 Series Switches cisco-sa-sd-wan-cred-EVGSF259 Cisco OpenVuln · software-dependent
Cisco Catalyst 9500 Series Switches cisco-sa-sd-wan-cred-EVGSF259 Cisco OpenVuln · software-dependent
Cisco Catalyst 9400 Series Switches cisco-sa-sd-wan-cred-EVGSF259 Cisco OpenVuln · software-dependent
Cisco Catalyst 9200 Series Switches cisco-sa-sd-wan-cred-EVGSF259 Cisco OpenVuln · software-dependent
Cisco Catalyst 9300 Series Switches cisco-sa-sd-wan-cred-EVGSF259 Cisco OpenVuln · software-dependent