Vulnerability Details CVE-2022-27506
Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.0%
CVSS Severity
CVSS v3 Score 2.7
CVSS v2 Score 6.8
References
Products affected by CVE-2022-27506
-
cpe:2.3:a:citrix:sd-wan_center_management_console:-
-
cpe:2.3:a:citrix:sd-wan_center_management_console:11.4.2
-
cpe:2.3:a:citrix:sd-wan_orchestrator:1.0
-
cpe:2.3:a:citrix:sd-wan_orchestrator:10.3
-
cpe:2.3:a:citrix:sd-wan_orchestrator:11.1
-
cpe:2.3:a:citrix:sd-wan_orchestrator:11.4.0a
-
cpe:2.3:a:citrix:sd-wan_orchestrator:12.3
-
cpe:2.3:a:citrix:sd-wan_orchestrator:13.2
-
cpe:2.3:a:citrix:sd-wan_orchestrator:9.6
-
cpe:2.3:h:citrix:sd-wan_1000:-
-
cpe:2.3:h:citrix:sd-wan_1100:-
-
cpe:2.3:h:citrix:sd-wan_110:-
-
cpe:2.3:h:citrix:sd-wan_2000:-
-
cpe:2.3:h:citrix:sd-wan_2100:-
-
cpe:2.3:h:citrix:sd-wan_210:-
-
cpe:2.3:h:citrix:sd-wan_4000:-
-
cpe:2.3:h:citrix:sd-wan_400:-
-
cpe:2.3:h:citrix:sd-wan_4100:-
-
cpe:2.3:h:citrix:sd-wan_410:-
-
cpe:2.3:h:citrix:sd-wan_5100:-
-
cpe:2.3:h:citrix:sd-wan_6100:-
-
cpe:2.3:o:citrix:sd-wan_1000_firmware:-
-
cpe:2.3:o:citrix:sd-wan_1100_firmware:-
-
cpe:2.3:o:citrix:sd-wan_110_firmware:-
-
cpe:2.3:o:citrix:sd-wan_2000_firmware:-
-
cpe:2.3:o:citrix:sd-wan_2100_firmware:-
-
cpe:2.3:o:citrix:sd-wan_210_firmware:-
-
cpe:2.3:o:citrix:sd-wan_4000_firmware:-
-
cpe:2.3:o:citrix:sd-wan_400_firmware:-
-
cpe:2.3:o:citrix:sd-wan_4100_firmware:-
-
cpe:2.3:o:citrix:sd-wan_410_firmware:-
-
cpe:2.3:o:citrix:sd-wan_5100_firmware:-
-
cpe:2.3:o:citrix:sd-wan_6100_firmware:-