Total vulnerabilities in the database
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system. This vulnerability is due to insufficient validation of the parameters of a specific CLI command. An attacker could exploit this vulnerability by issuing that command with specific parameters. A successful exploit could allow the attacker to overwrite the content of any arbitrary file that resides on the underlying host file system.
| Software | From | Fixed in |
|---|---|---|
| cisco / ios_xe | 16.12.1 | 16.12.1.x |
| cisco / ios_xe | 16.11.1 | 16.11.1.x |
| cisco / ios_xe | 16.11.1a | 16.11.1a.x |
| cisco / ios_xe | 16.12.1c | 16.12.1c.x |
| cisco / ios_xe | 16.12.1t | 16.12.1t.x |
| cisco / ios_xe | 16.11.2 | 16.11.2.x |
| cisco / ios_xe | 16.12.1s | 16.12.1s.x |
| cisco / ios_xe | 16.12.1a | 16.12.1a.x |
| cisco / ios_xe | 16.12.1x | 16.12.1x.x |
| cisco / ios_xe | 16.11.1c | 16.11.1c.x |
| cisco / ios_xe | 16.11.1b | 16.11.1b.x |
| cisco / ios_xe | 16.11.1s | 16.11.1s.x |
| cisco / ios_xe | 16.12.1w | 16.12.1w.x |
| cisco / ios_xe | 16.12.1y | 16.12.1y.x |
| cisco / ios_xe | 16.12.2 | 16.12.2.x |
| cisco / ios_xe | 16.12.2a | 16.12.2a.x |
| cisco / ios_xe | 16.12.3 | 16.12.3.x |
| cisco / ios_xe | 17.2.1 | 17.2.1.x |
| cisco / ios_xe | 16.12.2t | 16.12.2t.x |
| cisco / ios_xe | 16.12.2s | 16.12.2s.x |
| cisco / ios_xe | 16.12.3a | 16.12.3a.x |
| cisco / ios_xe | 17.2.1a | 17.2.1a.x |
| cisco / ios_xe | 17.2.1v | 17.2.1v.x |
| cisco / ios_xe | 16.12.1z | 16.12.1z.x |
| cisco / ios_xe | 16.12.3s | 16.12.3s.x |
| cisco / ios_xe | 17.2.1r | 17.2.1r.x |
| cisco / ios_xe | 16.12.1za | 16.12.1za.x |