Learn about CVE-2018-0347, a vulnerability in Cisco SD-WAN Solution allowing local attackers to execute arbitrary commands with root privileges. Find mitigation steps and affected systems here.
A vulnerability in the Zero Touch Provisioning (ZTP) subsystem of the Cisco SD-WAN Solution allows a local attacker to inject arbitrary commands with root privileges due to insufficient input validation.
Understanding CVE-2018-0347
This CVE identifies a security flaw in the Cisco SD-WAN Solution that can be exploited by authenticated attackers to execute commands with elevated privileges.
What is CVE-2018-0347?
The vulnerability in the ZTP subsystem of Cisco SD-WAN Solution enables authenticated local attackers to inject and execute arbitrary commands with root privileges by providing malicious input to an affected parameter.
The Impact of CVE-2018-0347
Technical Details of CVE-2018-0347
This section provides detailed technical information about the vulnerability.
Vulnerability Description
Affected Systems and Versions
Exploitation Mechanism
Mitigation and Prevention
Protect your systems from CVE-2018-0347 with these mitigation strategies.
Immediate Steps to Take
Long-Term Security Practices
Patching and Updates