CVE-2022-20775 — Cisco SD-WAN Path Traversal Vulnerability

Description

Cisco SD-WAN CLI contains a path traversal vulnerability that could allow an authenticated local attacker to gain elevated privileges via improper access controls on commands within the application CLI. A successful exploit could allow the attacker to execute arbitrary commands as the root user.

How to fix CVE-2022-20775

No package mapping is available — consult the references below for vendor-specific guidance.

Is CVE-2022-20775 being exploited?

Yes — CVE-2022-20775 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.

Affected packages (0)

No package mapping in OSV.