CVE-2019-1647 vulnerability in Cisco Products
Published on January 24, 2019
Cisco SD-WAN Solution Unauthorized Access Vulnerability
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, adjacent attacker to bypass authentication and have direct unauthorized access to other vSmart containers. The vulnerability is due to an insecure default configuration of the affected system. An attacker could exploit this vulnerability by directly connecting to the exposed services. An exploit could allow the attacker to retrieve and modify critical system files.
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2019-1647 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2019-1647
stack.watch emails you whenever new vulnerabilities are published in Cisco Sd Wan or Cisco Vsmart Controller. Just hit a watch button to start following.
Affected Versions
Cisco SD-WAN Solution Version n/a is affected by CVE-2019-1647Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.