Unrated severityNVD Advisory· Published May 7, 2025· Updated Feb 26, 2026
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability
CVE-2025-20122
Description
A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to gain privileges of the root user on the underlying operating system.
This vulnerability is due to insufficient input validation. An authenticated attacker with read-only privileges on the SD-WAN Manager system could exploit this vulnerability by sending a crafted request to the CLI of the SD-WAN Manager. A successful exploit could allow the attacker to gain root privileges on the underlying operating system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 20.1.12
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.