Cisco SD-WAN Software Information Disclosure Vulnerability
Description
A vulnerability in the Multiprotocol Label Switching (MPLS) packet handling function of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to gain access to information stored in MPLS buffer memory. This vulnerability is due to insufficient handling of malformed MPLS packets that are processed by a device that is running Cisco SD-WAN Software. An attacker could exploit this vulnerability by sending a crafted MPLS packet to an affected device that is running Cisco SD-WAN Software or Cisco SD-WAN vManage Software. A successful exploit could allow the attacker to gain unauthorized access to sensitive information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An unauthenticated remote attacker can read sensitive MPLS buffer memory on Cisco SD-WAN devices by sending a crafted MPLS packet.
Vulnerability
A vulnerability in the Multiprotocol Label Switching (MPLS) packet handling function of Cisco SD-WAN Software allows an unauthenticated, remote attacker to read sensitive information from MPLS buffer memory. The issue stems from insufficient validation of malformed MPLS packets processed by affected devices. Affected versions include Cisco SD-WAN Software releases 18.4 (before 18.4.6), 19.2 (before 19.2.3), 20.3 (before 20.3.2), 20.4 (before 20.4.1), and 20.5 (before 20.5.1). Cisco SD-WAN vManage Software is also listed as affected in the advisory [1].
Exploitation
An attacker can exploit this vulnerability by sending a crafted MPLS packet to an affected device running Cisco SD-WAN Software or Cisco SD-WAN vManage Software. No authentication or prior access is required; the attacker only needs network reachability to the target device. The malformed packet triggers the insufficient handling logic, allowing the attacker to access buffer memory contents.
Impact
Successful exploitation results in unauthorized disclosure of sensitive information stored in MPLS buffer memory. The impact is limited to information disclosure; no code execution, privilege escalation, or denial of service is described in the available references [1].
Mitigation
Cisco has released fixed software versions to address this vulnerability. The first fixed releases are 18.4.6, 19.2.3, 20.3.2, 20.4.1, and 20.5.1. Customers should upgrade to these or later releases. No workarounds are documented. The vulnerability is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog as of publication [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Cisco/Cisco SD-WAN Solutionv5Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-mpls-infodisclos-MSSRFkZqmitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.