CVE-2025-20122: Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability

7.8 CVSS

Description

A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to gain privileges of the root user on the underlying operating system.

This vulnerability is due to insufficient input validation. An authenticated attacker with read-only privileges on the SD-WAN Manager system could exploit this vulnerability by sending a crafted request to the CLI of the SD-WAN Manager. A successful exploit could allow the attacker to gain root privileges on the underlying operating system.

Classification

CVE ID: CVE-2025-20122

CVSS Base Severity: HIGH

CVSS Base Score: 7.8

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem Types

Channel Accessible by Non-Endpoint

Affected Products

Vendor: Cisco

Product: Cisco Catalyst SD-WAN Manager

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 3.22% (scored less or equal to compared to others)

EPSS Date: 2025-06-04 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-20122
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-priviesc-WCk7bmmt

Timeline

2025-05-07 16:00:45 UTC
Cisco Security Advisory

Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability
2025-05-07 18:40:14 UTC
CVE

Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability