VYPR

SD-WAN Edge

by VMware

CVEs (4)

  • CVE-2024-22246HigApr 2, 2024
    risk 0.48cvss 7.4epss 0.00

    VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution. A malicious actor with local access to the Edge Router UI during activation may be able to perform a command injection attack that could lead to full…

  • CVE-2024-22247MedApr 2, 2024
    risk 0.31cvss 4.8epss 0.00

    VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially exploit this vulnerability to access the BIOS configuration. In addition, the…

  • CVE-2023-20899Jul 6, 2023
    risk 0.00cvss epss 0.01

    VMware SD-WAN (Edge) contains a bypass authentication vulnerability. An unauthenticated attacker can download the Diagnostic bundle of the application under VMware SD-WAN Management.

  • CVE-2020-14606Jul 15, 2020
    risk 0.00cvss epss 0.03

    Vulnerability in the Oracle SD-WAN Edge product of Oracle Communications Applications (component: User Interface). Supported versions that are affected are 8.2 and 9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise…