It's 2021 and you can hijack a Cisco SD-WAN deployment with malicious IP traffic and a buffer overflow. Patch now

It's 2021 and you can hijack a Cisco SD-WAN deployment with malicious IP traffic and a buffer overflow. Patch now

Cisco this week emitted patches for four sets of critical-severity security holes in its products along with other fixes.


The worst of the bugs can be exploited by sending specially crafted IP packets to a vulnerable installation, and overflowing a memory buffer to ultimately execute code as root on the machine, allowing the box to be completely commandeered. Another set of flaws can be abused by sending HTTP requests that trigger arbitrary command execution to again hijack the machine. You should install updates to address these vulnerabilities as soon as possible.

Here's a quick list:


Cisco SD-WAN Buffer Overflow Vulnerabilities (CVE-2021-1300, CVE-2021-1301): Systems running the Cisco SD-WAN software – such as SD-WAN vEdge Routers – can be exploited "by sending crafted IP traffic through an affected devi ..

Support the originator by clicking the read the rest link below.