CVE-2025-20122

Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability

Description

A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to gain privileges of the root user on the underlying operating system. This vulnerability is due to insufficient input validation. An authenticated attacker with read-only privileges on the SD-WAN Manager system could exploit this vulnerability by sending a crafted request to the CLI of the SD-WAN Manager. A successful exploit could allow the attacker to gain root privileges on the underlying operating system.

INFO

Published Date :

2025-05-07T17:18:27.333Z

Last Modified :

2026-02-26T18:28:49.684Z

Source :

cisco

AFFECTED PRODUCTS

The following products are affected by CVE-2025-20122 vulnerability.

Vendors	Products
Cisco	Catalyst Sd-wan Manager

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-20122.

URL	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-priviesc-WCk7bmmt

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact