Cisco fixes multiple critical flaws in SD-WAN vManage and HyperFlex HX software. If not patched, these vulnerabilities in Cisco networking device could allow unauthenticated attacker to perform command injection attacks, execute arbitrary code, gain access to sensitive information, escalate privileges, send unauthorized messages ,create new administrative level user accounts, executing commands as root user on affected systems.
OVERVIEW
▪ Cisco fixes critical flaws in SD-WAN vManage and HyperFlex HX software.
▪ Cisco SD-WAN provides a centralized management interface of an organization’s WAN including their cloud and data center environment. Through the Cisco vManage console, user can quickly establish an SD-WAN overlay fabric to connect data centers, branches, campuses, and colocation facilities to improve network speed, security, and efficiency.
▪ Cisco HyperFlex HX Series is Cisco’s a converged infrastructure system that integrates computing, networking and storage resources to increase efficiency and enable centralized management. This product contains a web-based interface which allows user can access to manage the device.
▪ If not patched, these Multiple vulnerabilities in cisco networking device could allow unauthenticated attacker to perform command injection attacks, execute arbitrary code, gain access to sensitive information, escalate privileges, send unauthorized messages, create new administrative level user accounts, executing commands as root user on affected systems