CVE-2020-26071

CVSS 3.1 Score 8.4 of 10 (high)

Details

Published Nov 18, 2024
CWE ID 22

Summary

CVE-2020-26071 is a vulnerability affecting the CLI of Cisco SD-WAN Software. It allows authenticated, local attackers to create or overwrite arbitrary files on an affected device, potentially causing a denial of service (DoS) condition. This vulnerability results from insufficient input validation for certain commands, enabling crafted arguments to manipulate file creation or overwriting. Cisco has issued software updates to mitigate this issue, and no workarounds are currently available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share