FKIE_CVE-2025-20187

Vulnerability from fkie_nvd - Published: 2025-05-07 18:15 - Updated: 2025-08-04 14:29
Severity ?
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Summary
A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to improper validation of requests to APIs. An attacker could exploit this vulnerability by sending malicious requests to an API within the affected system. A successful exploit could allow the attacker to conduct directory traversal attacks and write files to an arbitrary location on the affected system.
References
psirt@cisco.comhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwanarbfile-2zKhKZwJVendor Advisory
Impacted products
Vendor Product Version
cisco catalyst_sd-wan_manager 17.2.4
cisco catalyst_sd-wan_manager 17.2.5
cisco catalyst_sd-wan_manager 17.2.6
cisco catalyst_sd-wan_manager 17.2.7
cisco catalyst_sd-wan_manager 17.2.8
cisco catalyst_sd-wan_manager 17.2.9
cisco catalyst_sd-wan_manager 17.2.10
cisco catalyst_sd-wan_manager 18.2.0
cisco catalyst_sd-wan_manager 18.3.0
cisco catalyst_sd-wan_manager 18.3.1
cisco catalyst_sd-wan_manager 18.3.1.1
cisco catalyst_sd-wan_manager 18.3.3
cisco catalyst_sd-wan_manager 18.3.3.1
cisco catalyst_sd-wan_manager 18.3.4
cisco catalyst_sd-wan_manager 18.3.5
cisco catalyst_sd-wan_manager 18.3.6
cisco catalyst_sd-wan_manager 18.3.6.1
cisco catalyst_sd-wan_manager 18.3.7
cisco catalyst_sd-wan_manager 18.3.8
cisco catalyst_sd-wan_manager 18.4.0
cisco catalyst_sd-wan_manager 18.4.0.1
cisco catalyst_sd-wan_manager 18.4.1
cisco catalyst_sd-wan_manager 18.4.3
cisco catalyst_sd-wan_manager 18.4.4
cisco catalyst_sd-wan_manager 18.4.5
cisco catalyst_sd-wan_manager 18.4.6
cisco catalyst_sd-wan_manager 18.4.302
cisco catalyst_sd-wan_manager 18.4.303
cisco catalyst_sd-wan_manager 18.4.501_es
cisco catalyst_sd-wan_manager 19.0.0
cisco catalyst_sd-wan_manager 19.0.1a
cisco catalyst_sd-wan_manager 19.1.0
cisco catalyst_sd-wan_manager 19.2.0
cisco catalyst_sd-wan_manager 19.2.1
cisco catalyst_sd-wan_manager 19.2.2
cisco catalyst_sd-wan_manager 19.2.3
cisco catalyst_sd-wan_manager 19.2.4
cisco catalyst_sd-wan_manager 19.2.4.0.1
cisco catalyst_sd-wan_manager 19.2.4.0.8
cisco catalyst_sd-wan_manager 19.2.4.0.9
cisco catalyst_sd-wan_manager 19.2.31
cisco catalyst_sd-wan_manager 19.2.32
cisco catalyst_sd-wan_manager 19.2.097
cisco catalyst_sd-wan_manager 19.2.098
cisco catalyst_sd-wan_manager 19.2.099
cisco catalyst_sd-wan_manager 19.2.929
cisco catalyst_sd-wan_manager 19.3.0
cisco catalyst_sd-wan_manager 20.1.1
cisco catalyst_sd-wan_manager 20.1.1.1
cisco catalyst_sd-wan_manager 20.1.2
cisco catalyst_sd-wan_manager 20.1.2_937
cisco catalyst_sd-wan_manager 20.1.3
cisco catalyst_sd-wan_manager 20.1.3.1
cisco catalyst_sd-wan_manager 20.1.12
cisco catalyst_sd-wan_manager 20.3.1
cisco catalyst_sd-wan_manager 20.3.2
cisco catalyst_sd-wan_manager 20.3.2.0.5
cisco catalyst_sd-wan_manager 20.3.2.0.6
cisco catalyst_sd-wan_manager 20.3.2.1
cisco catalyst_sd-wan_manager 20.3.2.1_927
cisco catalyst_sd-wan_manager 20.3.2.1_930
cisco catalyst_sd-wan_manager 20.3.2_925
cisco catalyst_sd-wan_manager 20.3.2_928
cisco catalyst_sd-wan_manager 20.3.2_929
cisco catalyst_sd-wan_manager 20.3.2_937
cisco catalyst_sd-wan_manager 20.3.3
cisco catalyst_sd-wan_manager 20.3.3.0.8
cisco catalyst_sd-wan_manager 20.3.3.0.14
cisco catalyst_sd-wan_manager 20.3.3.0.16
cisco catalyst_sd-wan_manager 20.3.3.0.17
cisco catalyst_sd-wan_manager 20.3.3.0.18
cisco catalyst_sd-wan_manager 20.3.3.1
cisco catalyst_sd-wan_manager 20.3.3.1.1
cisco catalyst_sd-wan_manager 20.3.3.1.2
cisco catalyst_sd-wan_manager 20.3.3.1.5
cisco catalyst_sd-wan_manager 20.3.3.1.7
cisco catalyst_sd-wan_manager 20.3.3.1.10
cisco catalyst_sd-wan_manager 20.3.3.2
cisco catalyst_sd-wan_manager 20.3.4
cisco catalyst_sd-wan_manager 20.3.4.0.1
cisco catalyst_sd-wan_manager 20.3.4.0.5
cisco catalyst_sd-wan_manager 20.3.4.0.6
cisco catalyst_sd-wan_manager 20.3.4.0.11
cisco catalyst_sd-wan_manager 20.3.4.0.19
cisco catalyst_sd-wan_manager 20.3.4.0.20
cisco catalyst_sd-wan_manager 20.3.4.0.24
cisco catalyst_sd-wan_manager 20.3.4.0.25
cisco catalyst_sd-wan_manager 20.3.4.0.26
cisco catalyst_sd-wan_manager 20.10.1
cisco catalyst_sd-wan_manager 20.10.1.1
cisco catalyst_sd-wan_manager 20.10.1.2
cisco catalyst_sd-wan_manager 20.11.1
cisco catalyst_sd-wan_manager 20.11.1.1
cisco catalyst_sd-wan_manager 20.11.1.2
cisco catalyst_sd-wan_manager 20.12.1
cisco catalyst_sd-wan_manager 20.12.2
cisco catalyst_sd-wan_manager 20.12.3
cisco catalyst_sd-wan_manager 20.12.3.1
cisco catalyst_sd-wan_manager 20.12.4
cisco catalyst_sd-wan_manager 20.12.4.0.03
cisco catalyst_sd-wan_manager 20.12.4.0.4
cisco catalyst_sd-wan_manager 20.12.4.1
cisco catalyst_sd-wan_manager 20.12.401
cisco catalyst_sd-wan_manager 20.13.1
cisco catalyst_sd-wan_manager 20.14.1
cisco catalyst_sd-wan_manager 20.15.1
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0D5F32C-BFC1-49CC-BE96-920FCBE567B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "F621202C-3851-4D7E-BFA2-DABB08E73DB6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "38132BE5-528B-472E-9249-B226C0DE1C80",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "37C817B2-DDB9-4CAF-96C9-776482A8597D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC5D29FD-0917-4C1F-AE75-2D63F5C9C58D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E3090C4-15E6-4746-B0D2-27665AB91B08",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:17.2.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "04E924CC-3161-436D-93F0-066F76172F55",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7ED059CD-AD0A-4748-8390-8CDCF4C4D1CC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6990E97D-30E9-42A9-AE6A-CC597DF75B0B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "15B60BA4-EA02-4D0D-82C3-1B08016EF5AE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E9DC51F7-72D4-4593-8DDE-8AA3955BB826",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B047A011-1C27-4D86-99C1-BFCDC7F04A9B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DADEA8FB-3298-4534-B65E-81060E3DB45A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "F4C6DF1F-4995-4486-8F90-9EFD6417ABA6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D249954-93E0-4124-B9BA-84B9F34D7CB1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B24396C-3732-4CF8-B01A-62C77D20E7FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B7F20EBE-DFDF-4996-93D1-28EE776BC777",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "3DF09CAB-CA1B-428E-9A0B-AADACE9201A0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "D99ED480-C206-48DD-9DF3-FC60D91B98A3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4DC515B6-27A3-4723-9792-2BA42EF63E44",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DEC0BBDA-FAE5-4AF7-81C8-83041A58E8E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A066E28-31B0-46C7-ABB8-F5D1F3A303C9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8F536CC-29D6-401E-92C5-964FDBDCCE65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9139593A-9414-488D-AA3A-5560C643587D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "07BFB47E-F456-4782-98D7-68D02500FDD3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "57F0D358-54BE-4A47-8B76-D23B5CCC4BE2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.302:*:*:*:*:*:*:*",
              "matchCriteriaId": "33BEBE47-AF47-4994-871D-5969270EE5AD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.303:*:*:*:*:*:*:*",
              "matchCriteriaId": "A27094E7-E6F3-47CA-A90A-86FEA2F1BE33",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:18.4.501_es:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B8958D8-389F-4FB6-8F29-621608FB2B32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "37B66141-99E6-4D7D-8D11-18E9B34B002D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.0.1a:*:*:*:*:*:*:*",
              "matchCriteriaId": "40177056-0438-4BFF-ABD3-2328FE585800",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D6D47A0-43A2-4F9F-830B-B2FB79E779A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "87E7B932-950A-4573-832F-8477FABA5929",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A1711A70-5931-4C1F-B522-46AD2E5D7C51",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "FE41B8AE-8F1E-4116-BDDC-65B913AD448E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "7EC80219-C760-4CA8-B360-7B6545F502C2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA93E21E-4D61-4CA5-ACF2-50C2A4F2C62C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.4.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "73BE7C7B-B4A8-4C5E-BBD1-A29302FDA12B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.4.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "240D7D9E-0964-442B-BE32-E214D2A9547C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.4.0.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "88956643-09B0-453B-9B64-C953B56479E1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.31:*:*:*:*:*:*:*",
              "matchCriteriaId": "F9E425CF-5773-4C17-B284-588DDCE8DE43",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "D89DEB9F-1F0A-4190-A9A7-2DE3949E5034",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.097:*:*:*:*:*:*:*",
              "matchCriteriaId": "34886EDF-1C10-4F57-A82D-FF1AF668E2C1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.098:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8EE5ECA-5D13-4C29-9396-95FFBEC4236A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.099:*:*:*:*:*:*:*",
              "matchCriteriaId": "1D7B3B10-6936-4352-9EE7-561BB1918769",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.2.929:*:*:*:*:*:*:*",
              "matchCriteriaId": "1EB69F8B-67CB-4296-893A-7A35B155EBEA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:19.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "491BD04C-85BE-4766-9965-59744D2639CE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "545F75A3-451C-4993-98AE-51C23EF49927",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB0DD6B-6C4D-4FF4-97AB-815A4566320F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D144CB1-0AD1-4C8A-A709-52C26965675F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.2_937:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D25B8C8-93E0-4ADF-B398-2071432B7012",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "1038B545-CD2F-4338-AFE0-35D7ED6D20BB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "9912DC56-AE0A-4774-80CD-0CEED30135AF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.1.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "482DC851-7E33-4487-8219-6675091FD7C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "BAFBFE36-6913-4122-A537-F2AA1562FE69",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "16DB9C4B-F828-482B-90BB-6633B2CD3393",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "70CF7A66-82B0-4ABF-9C6C-65A0C6B97C0A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "17A29BE8-DE0E-4EAF-B3CD-EDC857F6D796",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "19F4011C-DB20-4866-8BE6-F539677E4C48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2.1_927:*:*:*:*:*:*:*",
              "matchCriteriaId": "97E0CFE2-36AE-4305-AAC9-1F9E3409ECBD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2.1_930:*:*:*:*:*:*:*",
              "matchCriteriaId": "E9F065D2-D8C2-40CE-A6C0-612925BD4D61",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2_925:*:*:*:*:*:*:*",
              "matchCriteriaId": "C46B9057-A052-426F-930F-7B0D2C55FC23",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2_928:*:*:*:*:*:*:*",
              "matchCriteriaId": "75CE2B84-41E5-4652-92B1-F198A0633473",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2_929:*:*:*:*:*:*:*",
              "matchCriteriaId": "15A5932F-9F56-4ED3-852A-F927EE0F0CE5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.2_937:*:*:*:*:*:*:*",
              "matchCriteriaId": "E62D8B25-3343-450B-8548-839F180B9A00",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A693E125-8027-4482-AF78-5A4342D61274",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B8AFEF4-F0BF-44B7-8292-8DCD6B72FD2E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.0.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "E054C252-C241-415F-9867-957B87A11486",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.0.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD8C74BF-AD99-4C58-940A-D01D31B7F2DD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "2E645B0F-1CD4-41EA-9E29-CC50F3C88DF2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.0.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "8891CE1D-2EA1-4BB1-802F-60A2E566CF1B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E8292733-EC96-4B99-8E56-7236D5320109",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A399776E-199C-40C8-9329-91298E510858",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F009CA0-86DD-46D8-A7BA-C0A7DBC71E65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "C94E8D13-BD1C-438D-9BA5-868AEBC9C016",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "093D4AA8-8104-4A0F-A092-69BA7B85F825",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E2C2991-B42C-40EB-9943-548E8C367B01",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A7B49E7-D816-4BDB-AA9A-704A3B9EA8B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "FCE6E7CD-856D-410E-A061-8CD9F0EA4791",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1322E357-688B-4AEC-9199-4078BCBBF0E5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B17FB1B-3E11-4748-8D4B-2D687776F170",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "5C3830FC-7851-4A75-9B90-347C5C34F447",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C24FFF1-4B46-48EB-B3F9-2C39943BA67C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B1A331B-C6B9-451B-993A-24F4F24D3D52",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "845624D6-A365-43AA-85E1-AA36FAE36DE0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.24:*:*:*:*:*:*:*",
              "matchCriteriaId": "10C10878-6078-4CD3-9F2A-CC4E103DB5A6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.25:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B092180-8BF5-42B4-90B6-97DB7BE3025F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.3.4.0.26:*:*:*:*:*:*:*",
              "matchCriteriaId": "D571056B-7D2E-4652-822C-14AB32292CC0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.10.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DBADEC84-F1C6-4C24-A74E-5B75575D83E1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.10.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDDA344B-65CE-459F-AD8D-5A79207CC5AB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.10.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4AB7793-07C0-4A8E-8288-176D90E4D880",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.11.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3FC02CEE-16C2-4D61-894B-F593C61490D5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.11.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D2A77297-F63B-4E08-B93F-6382F554E7CA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.11.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D75FD0B3-1C01-4304-AFF1-0DE10783D6E8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C25F01CA-6B44-44DF-A83C-B29EE24B2F39",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "174DA696-D43A-4216-82D0-DC5D839FA22D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A51663EC-90C6-43EA-A219-85A5BE535E30",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD628D28-E9B2-4779-8D8C-4A7DE0751EB6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBB4BACD-1EF8-46E6-8D82-158C2BBAB189",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.4.0.03:*:*:*:*:*:*:*",
              "matchCriteriaId": "10688C94-6F71-47BC-8A46-06B28B95DDAD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.4.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "38C16900-F599-4EFC-ACEE-C656C1751F9B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4999A855-B6DE-4390-B81A-6F74B3885CB9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.12.401:*:*:*:*:*:*:*",
              "matchCriteriaId": "DBB4CE1E-5571-4616-99BA-840CA0B0E802",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.13.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "71AA7093-F41E-4CA3-9F1A-DB754575EA2D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.14.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "55940746-03A2-46E4-A76D-6C6483A983EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:20.15.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A4C6AAE3-E9FD-4AF3-ADED-A8AE281003C7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to write arbitrary files to an affected system.\r\n\r\nThis vulnerability is due to improper validation of requests to APIs. An attacker could exploit this vulnerability by sending malicious requests to an API within the affected system. A successful exploit could allow the attacker to conduct directory traversal attacks and write files to an arbitrary location on the affected system."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en los endpoints de datos de la aplicaci\u00f3n Cisco Catalyst SD-WAN Manager, anteriormente Cisco SD-WAN vManage, podr\u00eda permitir que un atacante remoto autenticado escriba archivos arbitrarios en un sistema afectado. Esta vulnerabilidad se debe a una validaci\u00f3n incorrecta de las solicitudes a las API. Un atacante podr\u00eda explotar esta vulnerabilidad enviando solicitudes maliciosas a una API dentro del sistema afectado. Una explotaci\u00f3n exitosa podr\u00eda permitir al atacante realizar ataques de cruce de directorios y escribir archivos en una ubicaci\u00f3n arbitraria del sistema afectado."
    }
  ],
  "id": "CVE-2025-20187",
  "lastModified": "2025-08-04T14:29:09.103",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.6,
        "source": "psirt@cisco.com",
        "type": "Primary"
      }
    ]
  },
  "published": "2025-05-07T18:15:38.463",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwanarbfile-2zKhKZwJ"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-22"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.