CVE-2022-20775: Privilege Escalation via Improper CLI Access in Cisco SD-Wan
CVE-2022-20775 Published on September 30, 2022
Cisco SD-WAN Software Privilege Escalation Vulnerability
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges.
This vulnerability is due to improper access controls on commands within the application CLI. An attacker could exploit this vulnerability by running a maliciously crafted command on the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-priv-E6e8tEdF
Known Exploited Vulnerability
This Cisco SD-WAN Path Traversal Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Cisco SD-WAN CLI contains a path traversal vulnerability that could allow an authenticated local attacker to gain elevated privileges via improper access controls on commands within the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.
The following remediation steps are recommended / required by February 27, 2026: Please adhere to CISA’s guidelines to assess exposure and mitigate risks associated with Cisco SD-WAN devices as outlines in CISA’s Emergency Directive 26-03 (URL listed below in Notes) and CISA’s “Hunt & Hardening Guidance for Cisco SD-WAN Devices (
Vulnerability Analysis
CVE-2022-20775 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. This vulnerability is known to be actively exploited by threat actors. The potential impact of an exploit of this vulnerability is considered to be very high.
Attack Vector:
LOCAL
Attack Complexity:
LOW
Privileges Required:
LOW
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
HIGH
Weakness Type
Path Traversal: '/../filedir'
The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize "/../" sequences that can resolve to a location that is outside of that directory.
Products Associated with CVE-2022-20775
Want to know whenever a new CVE is published for Cisco products? stack.watch will email you.
Affected Versions
Cisco Catalyst SD-WAN:- Version 18.3.1 is affected.
- Version 19.2.1 is affected.
- Version 17.2.4 is affected.
- Version 19.3.0 is affected.
- Version 18.3.0 is affected.
- Version 18.3.4 is affected.
- Version 18.4.303 is affected.
- Version 18.4.0.1 is affected.
- Version 17.2.9 is affected.
- Version 18.3.7 is affected.
- Version 18.2.0 is affected.
- Version 17.2.10 is affected.
- Version 18.4.5 is affected.
- Version 18.4.0 is affected.
- Version 17.2.5 is affected.
- Version 18.3.8 is affected.
- Version 18.4.4 is affected.
- Version 18.4.302 is affected.
- Version 17.2.7 is affected.
- Version 19.2.098 is affected.
- Version 20.1.1 is affected.
- Version 19.2.099 is affected.
- Version 18.3.3 is affected.
- Version 18.4.1 is affected.
- Version 17.2.8 is affected.
- Version 18.3.5 is affected.
- Version 19.0.0 is affected.
- Version 18.4.3 is affected.
- Version 19.1.0 is affected.
- Version 17.2.6 is affected.
- Version 18.3.3.1 is affected.
- Version 19.2.097 is affected.
- Version 20.1.1.1 is affected.
- Version 18.3.6 is affected.
- Version 19.2.0 is affected.
- Version 19.2.2 is affected.
- Version 20.1.11 is affected.
- Version 20.1.12 is affected.
- Version 19.1.0a is affected.
- Version 19.2.3 is affected.
- Version 17.3.1ESM1 is affected.
- Version 20.3.1 is affected.
- Version 17.3.1ESM2 is affected.
- Version 17.2.1LA is affected.
- Version 20.1.2 is affected.
- Version 17.3.1ESM3 is affected.
- Version 19.2.929 is affected.
- Version 19.2.31 is affected.
- Version 20.3.2 is affected.
- Version 19.2.32 is affected.
- Version 17.3.2ESM1 is affected.
- Version 20.3.2.1 is affected.
- Version 18.4.6 is affected.
- Version 20.4.1 is affected.
- Version 17.3.2ESM2 is affected.
- Version 19.2.4 is affected.
- Version 20.4.1.1 is affected.
- Version 20.3.3 is affected.
- Version 20.3.809 is affected.
- Version 20.3.3.1 is affected.
- Version 20.5.1 is affected.
- Version 20.3.811 is affected.
- Version 20.1.3 is affected.
- Version 20.4.1.2 is affected.
- Version 17.4.2.2527 is affected.
- Version 17.4.2ES1 is affected.
- Version 17.3.2ESM3 is affected.
- Version 20.4.2 is affected.
- Version 20.3.4 is affected.
- Version 20.6.1 is affected.
- Version 20.6.1.1 is affected.
- Version 20.6.2 is affected.
- Version 20.7.1 is affected.
- Version 20.4.2.1 is affected.
- Version 20.3.4.1 is affected.
- Version 20.5.1.1 is affected.
- Version 20.6.2.1 is affected.
- Version 20.3.4.2 is affected.
- Version 20.4.2.2 is affected.
- Version 20.6.2.2 is affected.
- Version 20.5.1.2 is affected.
- Version 20.7.1.1 is affected.
- Version 20.3.5 is affected.
- Version 20.6.3 is affected.
- Version 20.7.2 is affected.
- Version 20.6.3.1 is affected.
- Version 20.6.4 is affected.
- Version 20.3.6 is affected.
- Version 20.6.5 is affected.
- Version 20.3.7 is affected.
- Version 20.6.5.1 is affected.
- Version 20.6.4.1 is affected.
- Version 20.6.3.2 is affected.
- Version 20.4.2.3 is affected.
- Version 20.6.1.2 is affected.
- Version 20.3.4.3 is affected.
- Version 20.6.5.2 is affected.
- Version 20.3.3.2 is affected.
- Version 20.3.7.1 is affected.
- Version 20.3.5.1 is affected.
- Version 20.1.3.1 is affected.
- Version 20.6.5.3 is affected.
- Version 20.6.3.3 is affected.
- Version 20.3.7.2 is affected.
- Version 20.6.5.4 is affected.
- Version 20.6.4.2 is affected.
- Version 20.6.5.5 is affected.
- Version 20.6.3.4 is affected.
- Version 20.3.8 is affected.
- Version 20.6.6 is affected.
- Version 20.6.7 is affected.
- Version 20.6.8 is affected.
- Version 20.1.12 is affected.
- Version 19.2.1 is affected.
- Version 18.4.4 is affected.
- Version 18.4.5 is affected.
- Version 20.1.1.1 is affected.
- Version 20.1.1 is affected.
- Version 19.3.0 is affected.
- Version 19.2.2 is affected.
- Version 19.2.099 is affected.
- Version 18.3.6 is affected.
- Version 18.3.7 is affected.
- Version 19.2.0 is affected.
- Version 18.3.8 is affected.
- Version 19.0.0 is affected.
- Version 19.1.0 is affected.
- Version 18.4.302 is affected.
- Version 18.4.303 is affected.
- Version 19.2.097 is affected.
- Version 19.2.098 is affected.
- Version 17.2.10 is affected.
- Version 18.3.6.1 is affected.
- Version 19.0.1a is affected.
- Version 18.2.0 is affected.
- Version 18.4.3 is affected.
- Version 18.4.1 is affected.
- Version 17.2.8 is affected.
- Version 18.3.3.1 is affected.
- Version 18.4.0 is affected.
- Version 18.3.1 is affected.
- Version 17.2.6 is affected.
- Version 17.2.9 is affected.
- Version 18.3.4 is affected.
- Version 17.2.5 is affected.
- Version 18.3.1.1 is affected.
- Version 18.3.5 is affected.
- Version 18.4.0.1 is affected.
- Version 18.3.3 is affected.
- Version 17.2.7 is affected.
- Version 17.2.4 is affected.
- Version 18.3.0 is affected.
- Version 19.2.3 is affected.
- Version 18.4.501_ES is affected.
- Version 20.3.1 is affected.
- Version 20.1.2 is affected.
- Version 19.2.929 is affected.
- Version 19.2.31 is affected.
- Version 20.3.2 is affected.
- Version 19.2.32 is affected.
- Version 20.3.2_925 is affected.
- Version 20.3.2.1 is affected.
- Version 20.3.2.1_927 is affected.
- Version 18.4.6 is affected.
- Version 20.1.2_937 is affected.
- Version 20.4.1 is affected.
- Version 20.3.2_928 is affected.
- Version 20.3.2_929 is affected.
- Version 20.4.1.0.1 is affected.
- Version 20.3.2.1_930 is affected.
- Version 19.2.4 is affected.
- Version 20.5.0.1.1 is affected.
- Version 20.4.1.1 is affected.
- Version 20.3.3 is affected.
- Version 19.2.4.0.1 is affected.
- Version 20.3.2_937 is affected.
- Version 20.3.3.1 is affected.
- Version 20.5.1 is affected.
- Version 20.1.3 is affected.
- Version 20.3.3.0.4 is affected.
- Version 20.3.3.1.2 is affected.
- Version 20.3.3.1.1 is affected.
- Version 20.4.1.2 is affected.
- Version 20.3.3.0.2 is affected.
- Version 20.4.1.1.5 is affected.
- Version 20.4.1.0.01 is affected.
- Version 20.4.1.0.02 is affected.
- Version 20.3.3.1.7 is affected.
- Version 20.3.3.1.5 is affected.
- Version 20.5.1.0.1 is affected.
- Version 20.3.3.1.10 is affected.
- Version 20.3.3.0.8 is affected.
- Version 20.4.2 is affected.
- Version 20.4.2.0.1 is affected.
- Version 20.3.4 is affected.
- Version 20.3.3.0.14 is affected.
- Version 19.2.4.0.8 is affected.
- Version 19.2.4.0.9 is affected.
- Version 20.3.4.0.1 is affected.
- Version 20.3.2.0.5 is affected.
- Version 20.6.1 is affected.
- Version 20.5.1.0.2 is affected.
- Version 20.3.3.0.17 is affected.
- Version 20.6.1.1 is affected.
- Version 20.6.0.18.3 is affected.
- Version 20.3.2.0.6 is affected.
- Version 20.6.0.18.4 is affected.
- Version 20.4.2.0.2 is affected.
- Version 20.3.3.0.16 is affected.
- Version 20.3.4.0.5 is affected.
- Version 20.6.1.0.1 is affected.
- Version 20.3.4.0.6 is affected.
- Version 20.6.2 is affected.
- Version 20.7.1EFT2 is affected.
- Version 20.3.4.0.9 is affected.
- Version 20.3.4.0.11 is affected.
- Version 20.4.2.0.4 is affected.
- Version 20.3.3.0.18 is affected.
- Version 20.7.1 is affected.
- Version 20.6.2.1 is affected.
- Version 20.3.4.1 is affected.
- Version 20.5.1.1 is affected.
- Version 20.4.2.1 is affected.
- Version 20.4.2.1.1 is affected.
- Version 20.3.4.1.1 is affected.
- Version 20.3.813 is affected.
- Version 20.3.4.0.19 is affected.
- Version 20.4.2.2.1 is affected.
- Version 20.5.1.2 is affected.
- Version 20.3.4.2 is affected.
- Version 20.3.814 is affected.
- Version 20.4.2.2 is affected.
- Version 20.6.2.2 is affected.
- Version 20.3.4.2.1 is affected.
- Version 20.7.1.1 is affected.
- Version 20.3.4.1.2 is affected.
- Version 20.6.2.2.2 is affected.
- Version 20.3.4.0.20 is affected.
- Version 20.6.2.2.3 is affected.
- Version 20.4.2.2.2 is affected.
- Version 20.3.5 is affected.
- Version 20.6.2.0.4 is affected.
- Version 20.4.2.2.3 is affected.
- Version 20.3.4.0.24 is affected.
- Version 20.6.2.2.7 is affected.
- Version 20.6.3 is affected.
- Version 20.3.4.2.2 is affected.
- Version 20.4.2.2.4 is affected.
- Version 20.7.1.0.2 is affected.
- Version 20.3.5.0.8 is affected.
- Version 20.3.5.0.9 is affected.
- Version 20.3.5.0.7 is affected.
- Version 20.3.6 is affected.
- Version 20.3.7 is affected.
- Version 20.3.5.1 is affected.
- Version 20.3.4.3 is affected.
- Version 20.3.3.2 is affected.
- Version 20.3.7.1 is affected.
- Version 20.3.4.0.25 is affected.
- Version 20.6.2.2.4 is affected.
- Version 20.6.1.2 is affected.
- Version 20.3.4.0.26 is affected.
- Version 20.3.7.2 is affected.
- Version 20.3.8 is affected.
- Version 18.4.5 is affected.
- Version 20.1.12 is affected.
- Version 18.3.6 is affected.
- Version 19.2.1 is affected.
- Version 19.3.0 is affected.
- Version 20.1.1 is affected.
- Version 19.2.2 is affected.
- Version 18.3.8 is affected.
- Version 18.4.3 is affected.
- Version 18.4.4 is affected.
- Version 18.4.302 is affected.
- Version 19.1.0 is affected.
- Version 18.4.303 is affected.
- Version 19.2.0 is affected.
- Version 19.2.098 is affected.
- Version 17.2.10 is affected.
- Version 18.3.7 is affected.
- Version 18.3.1 is affected.
- Version 19.2.099 is affected.
- Version 19.2.097 is affected.
- Version 18.3.4 is affected.
- Version 18.2.0 is affected.
- Version 18.3.5 is affected.
- Version 18.4.1 is affected.
- Version 17.2.5 is affected.
- Version 17.2.7 is affected.
- Version 17.2.8 is affected.
- Version 17.2.9 is affected.
- Version 18.4.0 is affected.
- Version 17.2.6 is affected.
- Version 18.3.0 is affected.
- Version 17.2.4 is affected.
- Version 18.3.3 is affected.
- Version 19.2.3 is affected.
- Version 20.3.1 is affected.
- Version 20.1.2 is affected.
- Version 19.2.1 is affected.
- Version 20.1.12 is affected.
- Version 18.4.4 is affected.
- Version 19.3.0 is affected.
- Version 18.3.8 is affected.
- Version 19.2.2 is affected.
- Version 20.1.1 is affected.
- Version 18.3.6 is affected.
- Version 18.4.3 is affected.
- Version 18.4.302 is affected.
- Version 18.4.5 is affected.
- Version 18.4.303 is affected.
- Version 19.2.098 is affected.
- Version 19.1.0 is affected.
- Version 17.2.10 is affected.
- Version 19.0.1a is affected.
- Version 19.2.099 is affected.
- Version 18.3.7 is affected.
- Version 19.2.097 is affected.
- Version 18.3.1 is affected.
- Version 19.2.0 is affected.
- Version 17.2.9 is affected.
- Version 18.3.4 is affected.
- Version 18.2.0 is affected.
- Version 18.4.1 is affected.
- Version 17.2.5 is affected.
- Version 18.4.0 is affected.
- Version 18.3.5 is affected.
- Version 18.3.3 is affected.
- Version 17.2.7 is affected.
- Version 17.2.6 is affected.
- Version 17.2.8 is affected.
- Version 18.3.0 is affected.
- Version 17.2.4 is affected.
- Version 19.2.3 is affected.
- Version 20.3.1 is affected.
- Version 20.1.2 is affected.
- Version 19.2.929 is affected.
- Version 19.2.31 is affected.
- Version 20.3.2 is affected.
- Version 19.2.32 is affected.
- Version 18.4.6 is affected.
- Version 20.4.1 is affected.
- Version 19.2.4 is affected.
- Version 20.4.1.1 is affected.
- Version 20.3.3 is affected.
- Version 20.5.1 is affected.
- Version 20.1.3 is affected.
- Version 20.4.1.2 is affected.
- Version 20.4.2 is affected.
- Version 20.3.4 is affected.
- Version 20.6.1 is affected.
- Version 20.6.2 is affected.
- Version 20.7.1 is affected.
- Version 20.3.5 is affected.
- Version 20.6.3 is affected.
- Version 20.7.2 is affected.
- Version 20.6.4 is affected.
- Version 20.3.6 is affected.
- Version 20.6.5 is affected.
- Version 20.3.7 is affected.
- Version 20.4.2.3 is affected.
- Version 20.3.4.3 is affected.
- Version 20.6.4.1 is affected.
- Version 20.6.3.2 is affected.
- Version 20.3.5.1 is affected.
- Version 20.6.5.2 is affected.
- Version 20.3.7.1 is affected.
- Version 20.3.3.2 is affected.
- Version 20.6.1.2 is affected.
- Version 20.1.3.1 is affected.
- Version 20.6.5.3 is affected.
- Version 20.6.3.3 is affected.
- Version 20.3.7.2 is affected.
- Version 20.6.5.4 is affected.
- Version 20.3.8 is affected.
- Version 20.6.6 is affected.
- Version 20.6.7 is affected.
- Version 20.6.8 is affected.
- Version 18.4.303 is affected.
- Version 18.3.7 is affected.
- Version 19.3.0 is affected.
- Version 18.2.0 is affected.
- Version 20.1.12 is affected.
- Version 19.2.099 is affected.
- Version 17.2.10 is affected.
- Version 18.3.3 is affected.
- Version 18.3.6 is affected.
- Version 19.0.0 is affected.
- Version 17.2.6 is affected.
- Version 18.4.0 is affected.
- Version 19.1.01 is affected.
- Version 19.2.098 is affected.
- Version 18.3.1 is affected.
- Version 18.4.302 is affected.
- Version 19.2.2 is affected.
- Version 18.3.5 is affected.
- Version 17.2.9 is affected.
- Version 19.1.0 is affected.
- Version 20.1.11 is affected.
- Version 19.2.097 is affected.
- Version 18.4.5 is affected.
- Version 17.2.5 is affected.
- Version 17.2.8 is affected.
- Version 18.3.8 is affected.
- Version 18.3.0 is affected.
- Version 18.4.3 is affected.
- Version 18.4.4 is affected.
- Version 19.2.1 is affected.
- Version 17.2.4 is affected.
- Version 18.3.4 is affected.
- Version 19.0.1a is affected.
- Version 20.1.1 is affected.
- Version 17.2.7 is affected.
- Version 18.4.1 is affected.
- Version 19.2.0 is affected.
- Version 19.2.3 is affected.
- Version 20.3.1 is affected.
- Version 20.1.2 is affected.
- Version 19.2.929 is affected.
- Version 19.2.31 is affected.
- Version 20.3.2 is affected.
- Version 19.2.32 is affected.
- Version 18.4.6 is affected.
- Version 20.4.1 is affected.
- Version 19.2.4 is affected.
- Version 20.4.1.1 is affected.
- Version 20.3.3 is affected.
- Version 20.5.1 is affected.
- Version 20.1.3 is affected.
- Version 20.4.1.2 is affected.
- Version 20.4.2 is affected.
- Version 20.3.4 is affected.
- Version 20.6.1 is affected.
- Version 20.6.2 is affected.
- Version 20.7.1 is affected.
- Version 20.7.1.2 is affected.
- Version 20.3.5 is affected.
- Version 20.6.3 is affected.
- Version 20.7.2 is affected.
- Version 20.6.4 is affected.
- Version 20.3.6 is affected.
- Version 20.6.5 is affected.
- Version 20.3.7 is affected.
- Version 20.6.5.1 is affected.
- Version 20.3.3.2 is affected.
- Version 20.6.4.1 is affected.
- Version 20.6.3.2 is affected.
- Version 20.3.4.3 is affected.
- Version 20.6.5.2 is affected.
- Version 20.3.7.1 is affected.
- Version 20.3.5.1 is affected.
- Version 20.6.1.2 is affected.
- Version 20.6.5.3 is affected.
- Version 20.6.3.3 is affected.
- Version 20.3.7.2 is affected.
- Version 20.6.5.4 is affected.
- Version 20.3.8 is affected.
- Version 20.6.6 is affected.
- Version 20.6.7 is affected.
- Version 20.6.8 is affected.
Exploit Probability
EPSS
0.39%
Percentile
59.57%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.