CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3378

A vulnerability in the web-based management interface for Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted input that includes SQL statements to an affected system. A successful exploit could allow the attacker to modify entries in some database tables, affecting the integrity of the data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.9%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

Products affected by CVE-2020-3378

Cisco » 1100-4g Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-4g_integrated_services_router:-
Cisco » 1100-4gltegb Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-
Cisco » 1100-4gltena Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-
Cisco » 1100-6g Integrated Services Router » Version: N/A

cpe:2.3:h:cisco:1100-6g_integrated_services_router:-
Cisco » Vedge 1000 » Version: N/A

cpe:2.3:h:cisco:vedge_1000:-
Cisco » Vedge 100 » Version: N/A

cpe:2.3:h:cisco:vedge_100:-
Cisco » Vedge 100b » Version: N/A

cpe:2.3:h:cisco:vedge_100b:-
Cisco » Vedge 100m » Version: N/A

cpe:2.3:h:cisco:vedge_100m:-
Cisco » Vedge 100wm » Version: N/A

cpe:2.3:h:cisco:vedge_100wm:-
Cisco » Vedge 2000 » Version: N/A

cpe:2.3:h:cisco:vedge_2000:-
Cisco » Vedge 5000 » Version: N/A

cpe:2.3:h:cisco:vedge_5000:-
Cisco » Sd-Wan Firmware » Version: N/A

cpe:2.3:o:cisco:sd-wan_firmware:-
Cisco » Sd-Wan Firmware » Version: 16.12.1b

cpe:2.3:o:cisco:sd-wan_firmware:16.12.1b
Cisco » Sd-Wan Firmware » Version: 16.12.1d

cpe:2.3:o:cisco:sd-wan_firmware:16.12.1d
Cisco » Sd-Wan Firmware » Version: 16.12.1e

cpe:2.3:o:cisco:sd-wan_firmware:16.12.1e
Cisco » Sd-Wan Firmware » Version: 16.12.2r

cpe:2.3:o:cisco:sd-wan_firmware:16.12.2r
Cisco » Sd-Wan Firmware » Version: 17.2.0

cpe:2.3:o:cisco:sd-wan_firmware:17.2.0
Cisco » Sd-Wan Firmware » Version: 17.2.10

cpe:2.3:o:cisco:sd-wan_firmware:17.2.10
Cisco » Sd-Wan Firmware » Version: 17.2.4

cpe:2.3:o:cisco:sd-wan_firmware:17.2.4
Cisco » Sd-Wan Firmware » Version: 17.2.5

cpe:2.3:o:cisco:sd-wan_firmware:17.2.5
Cisco » Sd-Wan Firmware » Version: 17.2.6

cpe:2.3:o:cisco:sd-wan_firmware:17.2.6
Cisco » Sd-Wan Firmware » Version: 17.2.7

cpe:2.3:o:cisco:sd-wan_firmware:17.2.7
Cisco » Sd-Wan Firmware » Version: 17.2.8

cpe:2.3:o:cisco:sd-wan_firmware:17.2.8
Cisco » Sd-Wan Firmware » Version: 17.2.9

cpe:2.3:o:cisco:sd-wan_firmware:17.2.9
Cisco » Sd-Wan Firmware » Version: 18.2.0

cpe:2.3:o:cisco:sd-wan_firmware:18.2.0
Cisco » Sd-Wan Firmware » Version: 18.3.0

cpe:2.3:o:cisco:sd-wan_firmware:18.3.0
Cisco » Sd-Wan Firmware » Version: 18.3.1

cpe:2.3:o:cisco:sd-wan_firmware:18.3.1
Cisco » Sd-Wan Firmware » Version: 18.3.3

cpe:2.3:o:cisco:sd-wan_firmware:18.3.3
Cisco » Sd-Wan Firmware » Version: 18.3.3.1

cpe:2.3:o:cisco:sd-wan_firmware:18.3.3.1
Cisco » Sd-Wan Firmware » Version: 18.3.4

cpe:2.3:o:cisco:sd-wan_firmware:18.3.4
Cisco » Sd-Wan Firmware » Version: 18.3.5

cpe:2.3:o:cisco:sd-wan_firmware:18.3.5
Cisco » Sd-Wan Firmware » Version: 18.3.6

cpe:2.3:o:cisco:sd-wan_firmware:18.3.6
Cisco » Sd-Wan Firmware » Version: 18.3.7

cpe:2.3:o:cisco:sd-wan_firmware:18.3.7
Cisco » Sd-Wan Firmware » Version: 18.3.8

cpe:2.3:o:cisco:sd-wan_firmware:18.3.8
Cisco » Sd-Wan Firmware » Version: 18.4.0

cpe:2.3:o:cisco:sd-wan_firmware:18.4.0
Cisco » Sd-Wan Firmware » Version: 18.4.1

cpe:2.3:o:cisco:sd-wan_firmware:18.4.1
Cisco » Sd-Wan Firmware » Version: 18.4.3

cpe:2.3:o:cisco:sd-wan_firmware:18.4.3
Cisco » Sd-Wan Firmware » Version: 18.4.4

cpe:2.3:o:cisco:sd-wan_firmware:18.4.4
Cisco » Sd-Wan Firmware » Version: 19.2.0

cpe:2.3:o:cisco:sd-wan_firmware:19.2.0
Cisco » Sd-Wan Firmware » Version: 19.2.1

cpe:2.3:o:cisco:sd-wan_firmware:19.2.1
Cisco » Sd-Wan Firmware » Version: 19.2.2

cpe:2.3:o:cisco:sd-wan_firmware:19.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3378

Products

Pricing

Contact Us