Ministry of Industry and Information Technology releases a risk alert regarding multiple vulnerabilities in Cisco Catalyst SD-WAN management software.

Recently, the Ministry of Industry and Information Technology's Network Security Threat and Vulnerability Information Sharing Platform discovered multiple vulnerabilities in Cisco Catalyst SD-WAN management software that have been used in network attacks. Cisco Catalyst SD-WAN is a software-defined wide area network solution launched by Cisco for the deployment, management, and optimization of enterprise-wide area networks. Due to software defects, there are vulnerabilities such as privilege escalation, arbitrary file overwrite, authentication bypass, etc., which can be exploited by attackers to gain the highest root privileges, causing sensitive information leakage, system compromise, and other risks.Affected versions include: