CVE-2025-20187

Published: May 7, 2025Modified: Aug 4, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Exploitability: 2.8 / Impact: 3.6

Source: psirt@cisco.com (Secondary)

Description

A vulnerability in the application data endpoints of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to improper validation of requests to APIs. An attacker could exploit this vulnerability by sending malicious requests to an API within the affected system. A successful exploit could allow the attacker to conduct directory traversal attacks and write files to an arbitrary location on the affected system.

Affected (106)

Products: Cisco: Catalyst Sd Wan Manager

Cisco

1 product

Catalyst Sd Wan Manager

Configuration A

106 vulnerable

Vulnerable Software	Affected Versions
Cisco Catalyst Sd Wan Manager	Version 17.2.10
Cisco Catalyst Sd Wan Manager	Version 17.2.4
Cisco Catalyst Sd Wan Manager	Version 17.2.5
Cisco Catalyst Sd Wan Manager	Version 17.2.6
Cisco Catalyst Sd Wan Manager	Version 17.2.7
Cisco Catalyst Sd Wan Manager	Version 17.2.8
Cisco Catalyst Sd Wan Manager	Version 17.2.9
Cisco Catalyst Sd Wan Manager	Version 18.2.0
Cisco Catalyst Sd Wan Manager	Version 18.3.0
Cisco Catalyst Sd Wan Manager	Version 18.3.1.1
Cisco Catalyst Sd Wan Manager	Version 18.3.1
Cisco Catalyst Sd Wan Manager	Version 18.3.3.1
Cisco Catalyst Sd Wan Manager	Version 18.3.3
Cisco Catalyst Sd Wan Manager	Version 18.3.4
Cisco Catalyst Sd Wan Manager	Version 18.3.5
Cisco Catalyst Sd Wan Manager	Version 18.3.6.1
Cisco Catalyst Sd Wan Manager	Version 18.3.6
Cisco Catalyst Sd Wan Manager	Version 18.3.7
Cisco Catalyst Sd Wan Manager	Version 18.3.8
Cisco Catalyst Sd Wan Manager	Version 18.4.0.1
Cisco Catalyst Sd Wan Manager	Version 18.4.0
Cisco Catalyst Sd Wan Manager	Version 18.4.1
Cisco Catalyst Sd Wan Manager	Version 18.4.302
Cisco Catalyst Sd Wan Manager	Version 18.4.303
Cisco Catalyst Sd Wan Manager	Version 18.4.3
Cisco Catalyst Sd Wan Manager	Version 18.4.4
Cisco Catalyst Sd Wan Manager	Version 18.4.501_es
Cisco Catalyst Sd Wan Manager	Version 18.4.5
Cisco Catalyst Sd Wan Manager	Version 18.4.6
Cisco Catalyst Sd Wan Manager	Version 19.0.0
Cisco Catalyst Sd Wan Manager	Version 19.0.1a
Cisco Catalyst Sd Wan Manager	Version 19.1.0
Cisco Catalyst Sd Wan Manager	Version 19.2.097
Cisco Catalyst Sd Wan Manager	Version 19.2.098
Cisco Catalyst Sd Wan Manager	Version 19.2.099
Cisco Catalyst Sd Wan Manager	Version 19.2.0
Cisco Catalyst Sd Wan Manager	Version 19.2.1
Cisco Catalyst Sd Wan Manager	Version 19.2.2
Cisco Catalyst Sd Wan Manager	Version 19.2.31
Cisco Catalyst Sd Wan Manager	Version 19.2.32
Cisco Catalyst Sd Wan Manager	Version 19.2.3
Cisco Catalyst Sd Wan Manager	Version 19.2.4.0.1
Cisco Catalyst Sd Wan Manager	Version 19.2.4.0.8
Cisco Catalyst Sd Wan Manager	Version 19.2.4.0.9
Cisco Catalyst Sd Wan Manager	Version 19.2.4
Cisco Catalyst Sd Wan Manager	Version 19.2.929
Cisco Catalyst Sd Wan Manager	Version 19.3.0
Cisco Catalyst Sd Wan Manager	Version 20.1.1.1
Cisco Catalyst Sd Wan Manager	Version 20.1.12
Cisco Catalyst Sd Wan Manager	Version 20.1.1
Cisco Catalyst Sd Wan Manager	Version 20.1.2
Cisco Catalyst Sd Wan Manager	Version 20.1.2_937
Cisco Catalyst Sd Wan Manager	Version 20.1.3.1
Cisco Catalyst Sd Wan Manager	Version 20.1.3
Cisco Catalyst Sd Wan Manager	Version 20.10.1.1
Cisco Catalyst Sd Wan Manager	Version 20.10.1.2
Cisco Catalyst Sd Wan Manager	Version 20.10.1
Cisco Catalyst Sd Wan Manager	Version 20.11.1.1
Cisco Catalyst Sd Wan Manager	Version 20.11.1.2
Cisco Catalyst Sd Wan Manager	Version 20.11.1
Cisco Catalyst Sd Wan Manager	Version 20.12.1
Cisco Catalyst Sd Wan Manager	Version 20.12.2
Cisco Catalyst Sd Wan Manager	Version 20.12.3.1
Cisco Catalyst Sd Wan Manager	Version 20.12.3
Cisco Catalyst Sd Wan Manager	Version 20.12.4.0.03
Cisco Catalyst Sd Wan Manager	Version 20.12.4.0.4
Cisco Catalyst Sd Wan Manager	Version 20.12.4.1
Cisco Catalyst Sd Wan Manager	Version 20.12.401
Cisco Catalyst Sd Wan Manager	Version 20.12.4
Cisco Catalyst Sd Wan Manager	Version 20.13.1
Cisco Catalyst Sd Wan Manager	Version 20.14.1
Cisco Catalyst Sd Wan Manager	Version 20.15.1
Cisco Catalyst Sd Wan Manager	Version 20.3.1
Cisco Catalyst Sd Wan Manager	Version 20.3.2.0.5
Cisco Catalyst Sd Wan Manager	Version 20.3.2.0.6
Cisco Catalyst Sd Wan Manager	Version 20.3.2.1
Cisco Catalyst Sd Wan Manager	Version 20.3.2.1_927
Cisco Catalyst Sd Wan Manager	Version 20.3.2.1_930
Cisco Catalyst Sd Wan Manager	Version 20.3.2
Cisco Catalyst Sd Wan Manager	Version 20.3.2_925
Cisco Catalyst Sd Wan Manager	Version 20.3.2_928
Cisco Catalyst Sd Wan Manager	Version 20.3.2_929
Cisco Catalyst Sd Wan Manager	Version 20.3.2_937
Cisco Catalyst Sd Wan Manager	Version 20.3.3.0.14
Cisco Catalyst Sd Wan Manager	Version 20.3.3.0.16
Cisco Catalyst Sd Wan Manager	Version 20.3.3.0.17
Cisco Catalyst Sd Wan Manager	Version 20.3.3.0.18
Cisco Catalyst Sd Wan Manager	Version 20.3.3.0.8
Cisco Catalyst Sd Wan Manager	Version 20.3.3.1.10
Cisco Catalyst Sd Wan Manager	Version 20.3.3.1.1
Cisco Catalyst Sd Wan Manager	Version 20.3.3.1.2
Cisco Catalyst Sd Wan Manager	Version 20.3.3.1.5
Cisco Catalyst Sd Wan Manager	Version 20.3.3.1.7
Cisco Catalyst Sd Wan Manager	Version 20.3.3.1
Cisco Catalyst Sd Wan Manager	Version 20.3.3.2
Cisco Catalyst Sd Wan Manager	Version 20.3.3
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.11
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.19
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.1
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.20
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.24
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.25
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.26
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.5
Cisco Catalyst Sd Wan Manager	Version 20.3.4.0.6
Cisco Catalyst Sd Wan Manager	Version 20.3.4

Related CWEs

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (1)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwanarbfile-2zKhKZwJ

Source: psirt@cisco.com

Vendor Advisory

Timeline

No history available yet.