Certificate Validation Flaw in Cisco Catalyst SD-WAN Manager
CVE-2025-20157

5.9MEDIUM

Key Information:

Vendor
Cisco
Status
Cisco Catalyst Sd-wan Manager
Vendor
CVE Published:
7 May 2025

Badges

👾 Exploit Exists

Summary

A flaw in certificate validation processing in Cisco Catalyst SD-WAN Manager allows unauthenticated remote attackers to access sensitive information. This vulnerability arises from the improper validation of certificates utilized by the Smart Licensing feature. An attacker positioned advantageously on the network could exploit this weakness by intercepting Internet traffic, potentially revealing sensitive data, including device credentials that connect to Cisco cloud services. Organizations using this product are advised to implement security measures to mitigate potential risks.

Affected Version(s)

Cisco Catalyst SD-WAN Manager 20.1.12

Cisco Catalyst SD-WAN Manager 19.2.1

Cisco Catalyst SD-WAN Manager 18.4.4

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-20157 : Certificate Validation Flaw in Cisco Catalyst SD-WAN Manager | SecurityVulnerability.io