CVE-2024-20475

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface.

This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by inserting malicious data into a specific data field in an affected interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface.

Published: Sep 25, 2024
Updated: May 4, 2025
CVE: CVE-2024-20475
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.4
AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
cisco / catalyst_sd-wan_manager	20.6.3.3	20.6.3.3.x
cisco / catalyst_sd-wan_manager	20.6.1	20.6.1.x
cisco / catalyst_sd-wan_manager	20.11.1.2	20.11.1.2.x
cisco / catalyst_sd-wan_manager	20.6.1.1	20.6.1.1.x
cisco / catalyst_sd-wan_manager	20.6.2.1	20.6.2.1.x
cisco / catalyst_sd-wan_manager	20.6.2.2	20.6.2.2.x
cisco / catalyst_sd-wan_manager	20.6.5.1.11	20.6.5.1.11.x
cisco / catalyst_sd-wan_manager	20.6.3.0.47	20.6.3.0.47.x
cisco / catalyst_sd-wan_manager	20.6.5.1.10	20.6.5.1.10.x
cisco / catalyst_sd-wan_manager	20.6.3.4	20.6.3.4.x
cisco / catalyst_sd-wan_manager	20.6.5.4	20.6.5.4.x
cisco / catalyst_sd-wan_manager	20.6.1.2	20.6.1.2.x
cisco / catalyst_sd-wan_manager	20.6.5.2	20.6.5.2.x
cisco / catalyst_sd-wan_manager	20.6.4.1	20.6.4.1.x
cisco / catalyst_sd-wan_manager	20.6.3.2	20.6.3.2.x
cisco / catalyst_sd-wan_manager	20.6.5.1	20.6.5.1.x
cisco / catalyst_sd-wan_manager	20.6.3	20.6.3.x
cisco / catalyst_sd-wan_manager	20.6.2	20.6.2.x
cisco / catalyst_sd-wan_manager	20.9.3_li_images	20.9.3_li_images.x
cisco / catalyst_sd-wan_manager	20.12.4	20.12.4.x
cisco / catalyst_sd-wan_manager	20.12.3.1	20.12.3.1.x
cisco / catalyst_sd-wan_manager	20.9.5.2_li_images	20.9.5.2_li_images.x
cisco / catalyst_sd-wan_manager	20.14.1_li_images	20.14.1_li_images.x
cisco / catalyst_sd-wan_manager	20.14.1	20.14.1.x
cisco / catalyst_sd-wan_manager	20.9.5.1_li_images	20.9.5.1_li_images.x
cisco / catalyst_sd-wan_manager	20.9.5.1	20.9.5.1.x
cisco / catalyst_sd-wan_manager	20.6.7	20.6.7.x
cisco / catalyst_sd-wan_manager	20.9.4.1.3	20.9.4.1.3.x
cisco / catalyst_sd-wan_manager	20.12.3	20.12.3.x
cisco / catalyst_sd-wan_manager	20.12.3_li_images	20.12.3_li_images.x
cisco / catalyst_sd-wan_manager	20.9.5_li_images	20.9.5_li_images.x
cisco / catalyst_sd-wan_manager	20.9.5	20.9.5.x
cisco / catalyst_sd-wan_manager	20.9.4.1.1	20.9.4.1.1.x
cisco / catalyst_sd-wan_manager	20.13.1	20.13.1.x
cisco / catalyst_sd-wan_manager	20.9.4.0.4	20.9.4.0.4.x
cisco / catalyst_sd-wan_manager	20.13.1_li_images	20.13.1_li_images.x
cisco / catalyst_sd-wan_manager	20.6.6.0.1	20.6.6.0.1.x
cisco / catalyst_sd-wan_manager	20.12.2_li_images	20.12.2_li_images.x
cisco / catalyst_sd-wan_manager	20.12.2	20.12.2.x
cisco / catalyst_sd-wan_manager	20.6.3.0.51	20.6.3.0.51.x
cisco / catalyst_sd-wan_manager	20.6.5.2.4	20.6.5.2.4.x
cisco / catalyst_sd-wan_manager	20.6.5.1.7	20.6.5.1.7.x
cisco / catalyst_sd-wan_manager	20.9.3.0.26	20.9.3.0.26.x
cisco / catalyst_sd-wan_manager	20.6.5.1.14	20.6.5.1.14.x
cisco / catalyst_sd-wan_manager	20.9.3.0.24	20.9.3.0.24.x
cisco / catalyst_sd-wan_manager	20.9.3.0.25	20.9.3.0.25.x
cisco / catalyst_sd-wan_manager	20.9.4.1_li_images	20.9.4.1_li_images.x
cisco / catalyst_sd-wan_manager	20.9.4.1	20.9.4.1.x
cisco / catalyst_sd-wan_manager	20.9.3.0.23	20.9.3.0.23.x
cisco / catalyst_sd-wan_manager	20.12.1_li_images	20.12.1_li_images.x
cisco / catalyst_sd-wan_manager	20.12.1	20.12.1.x
cisco / catalyst_sd-wan_manager	20.9.4	20.9.4.x
cisco / catalyst_sd-wan_manager	20.9.4_li_images	20.9.4_li_images.x
cisco / catalyst_sd-wan_manager	20.9.3.0.21	20.9.3.0.21.x
cisco / catalyst_sd-wan_manager	20.9.2.3	20.9.2.3.x
cisco / catalyst_sd-wan_manager	20.9.3.0.18	20.9.3.0.18.x
cisco / catalyst_sd-wan_manager	20.10.1.2	20.10.1.2.x
cisco / catalyst_sd-wan_manager	20.9.3.0.12	20.9.3.0.12.x
cisco / catalyst_sd-wan_manager	20.6.4.0.19	20.6.4.0.19.x
cisco / catalyst_sd-wan_manager	20.9.3.0.4	20.9.3.0.4.x
cisco / catalyst_sd-wan_manager	20.6.5.1.5	20.6.5.1.5.x
cisco / catalyst_sd-wan_manager	20.6.5.2.3	20.6.5.2.3.x
cisco / catalyst_sd-wan_manager	20.9.2.2	20.9.2.2.x
cisco / catalyst_sd-wan_manager	20.6.3.0.40	20.6.3.0.40.x
cisco / catalyst_sd-wan_manager	20.11.1.1	20.11.1.1.x
cisco / catalyst_sd-wan_manager	20.6.2.2.4	20.6.2.2.4.x
cisco / catalyst_sd-wan_manager	20.10.1.1	20.10.1.1.x
cisco / catalyst_sd-wan_manager	20.6.3.0.39	20.6.3.0.39.x
cisco / catalyst_sd-wan_manager	20.9.3.0.3	20.9.3.0.3.x
cisco / catalyst_sd-wan_manager	20.6.3.1.1	20.6.3.1.1.x
cisco / catalyst_sd-wan_manager	20.11.1_li_images	20.11.1_li_images.x
cisco / catalyst_sd-wan_manager	20.11.1	20.11.1.x
cisco / catalyst_sd-wan_manager	20.9.3	20.9.3.x
cisco / catalyst_sd-wan_manager	20.10.1_li_images	20.10.1_li_images.x
cisco / catalyst_sd-wan_manager	20.9.1_li_images	20.9.1_li_images.x
cisco / catalyst_sd-wan_manager	20.6.3.0.33	20.6.3.0.33.x
cisco / catalyst_sd-wan_manager	20.10.1	20.10.1.x
cisco / catalyst_sd-wan_manager	20.6.3.0.29	20.6.3.0.29.x
cisco / catalyst_sd-wan_manager	20.6.3.0.27	20.6.3.0.27.x
cisco / catalyst_sd-wan_manager	20.6.3.0.25	20.6.3.0.25.x
cisco / catalyst_sd-wan_manager	20.6.3.0.23	20.6.3.0.23.x
cisco / catalyst_sd-wan_manager	20.6.3.0.18	20.6.3.0.18.x
cisco / catalyst_sd-wan_manager	20.6.3.0.19	20.6.3.0.19.x
cisco / catalyst_sd-wan_manager	20.6.3.0.14	20.6.3.0.14.x
cisco / catalyst_sd-wan_manager	20.6.3.0.11	20.6.3.0.11.x
cisco / catalyst_sd-wan_manager	20.7.2	20.7.2.x
cisco / catalyst_sd-wan_manager	20.6.3.0.2	20.6.3.0.2.x
cisco / catalyst_sd-wan_manager	20.6.3.0.10	20.6.3.0.10.x
cisco / catalyst_sd-wan_manager	20.6.3.0.5	20.6.3.0.5.x
cisco / catalyst_sd-wan_manager	20.6.3.0.7	20.6.3.0.7.x
cisco / catalyst_sd-wan_manager	20.8.1	20.8.1.x
cisco / catalyst_sd-wan_manager	20.7.1.0.2	20.7.1.0.2.x
cisco / catalyst_sd-wan_manager	20.6.2.2.7	20.6.2.2.7.x
cisco / catalyst_sd-wan_manager	20.6.2.0.4	20.6.2.0.4.x
cisco / catalyst_sd-wan_manager	20.6.2.2.3	20.6.2.2.3.x
cisco / catalyst_sd-wan_manager	20.6.2.2.2	20.6.2.2.2.x
cisco / catalyst_sd-wan_manager	20.7.1.1	20.7.1.1.x
cisco / catalyst_sd-wan_manager	20.7.1	20.7.1.x
cisco / catalyst_sd-wan_manager	20.7.1eft2	20.7.1eft2.x
cisco / catalyst_sd-wan_manager	20.6.1.0.1	20.6.1.0.1.x
cisco / catalyst_sd-wan_manager	20.6.0.18.4	20.6.0.18.4.x
cisco / catalyst_sd-wan_manager	20.6.0.18.3	20.6.0.18.3.x

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-xss-zQ4KPvYd

Vulnerability Database

289,697

CVE-2024-20475