cpe:/a:cisco:vmanage_network_management_system:- cpe:/o:cisco:vedge_1000_firmware:- cpe:/o:cisco:vedge_1000_firmware:16.9 cpe:/o:cisco:vedge_1000_firmware:16.9.1 cpe:/o:cisco:vedge_1000_firmware:16.9.3 cpe:/o:cisco:vedge_100_firmware:- cpe:/o:cisco:vedge_2000_firmware:- cpe:/o:cisco:vedge_5000_firmware:- CVE-2018-0432 2018-10-05T10:29:01.497-04:00 2019-10-09T19:32:04.130-04:00 9.0 NETWORK LOW SINGLE_INSTANCE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov BID 105296 CISCO 20180905 Cisco SD-WAN Solution Privilege Escalation Vulnerability A vulnerability in the error reporting feature of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to gain elevated privileges on an affected device. The vulnerability is due to a failure to properly validate certain parameters included within the error reporting application configuration. An attacker could exploit this vulnerability by sending a crafted command to the error reporting feature. A successful exploit could allow the attacker to gain root-level privileges and take full control of the device.