Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-20147

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a stored cross-site scripting attack (XSS) on an affected system.  This vulnerability is due to improper sanitization of user input to the web-based management interface. An attacker could exploit this vulnerability by submitting a malicious script through the interface. A successful exploit could allow the attacker to conduct a stored XSS attack on the affected system.

Published

2025-05-07T18:15:36.817

Last Modified

2025-07-31T18:14:54.037

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.4 (MEDIUM)

Weaknesses

Type: Primary
CWE-79

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	cisco	catalyst_sd-wan_manager	17.2.4	Yes
Application	cisco	catalyst_sd-wan_manager	17.2.5	Yes
Application	cisco	catalyst_sd-wan_manager	17.2.6	Yes
Application	cisco	catalyst_sd-wan_manager	17.2.7	Yes
Application	cisco	catalyst_sd-wan_manager	17.2.8	Yes
Application	cisco	catalyst_sd-wan_manager	17.2.9	Yes
Application	cisco	catalyst_sd-wan_manager	17.2.10	Yes
Application	cisco	catalyst_sd-wan_manager	18.2.0	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.0	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.3	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.4	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.5	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.6	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.6.1	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.7	Yes
Application	cisco	catalyst_sd-wan_manager	18.3.8	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.0	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.1	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.3	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.4	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.5	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.6	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.302	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.303	Yes
Application	cisco	catalyst_sd-wan_manager	18.4.501_es	Yes
Application	cisco	catalyst_sd-wan_manager	19.0.0	Yes
Application	cisco	catalyst_sd-wan_manager	19.0.1a	Yes
Application	cisco	catalyst_sd-wan_manager	19.1.0	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.0	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.2	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.3	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.4	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.4.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.4.0.8	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.4.0.9	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.31	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.32	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.097	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.098	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.099	Yes
Application	cisco	catalyst_sd-wan_manager	19.2.929	Yes
Application	cisco	catalyst_sd-wan_manager	19.3.0	Yes
Application	cisco	catalyst_sd-wan_manager	20.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.1.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.1.2_937	Yes
Application	cisco	catalyst_sd-wan_manager	20.1.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.1.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.1.12	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2.0.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2.0.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2.1_927	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2.1_930	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2_925	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2_928	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2_929	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.2_937	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.0.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.0.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.0.8	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.0.14	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.0.16	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.0.17	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.0.18	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.1.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.1.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.1.10	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.3.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.9	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.11	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.19	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.20	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.24	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.25	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.0.26	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.2.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.4.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.5.0.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.5.0.8	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.5.0.9	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.5.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.7.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.7.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.8	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.813	Yes
Application	cisco	catalyst_sd-wan_manager	20.3.814	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.1.0.01	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.1.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.1.0.02	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.1.1.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.0.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.0.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.2.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.2.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.2.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.2.8	Yes
Application	cisco	catalyst_sd-wan_manager	20.4.2.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.5.0.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.5.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.5.1.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.5.1.0.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.5.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.5.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.0.18.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.0.18.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.1.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2.0.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2.2.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2.2.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2.2.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.2.2.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.10	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.11	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.14	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.18	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.19	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.23	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.25	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.27	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.29	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.31	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.32	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.33	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.38	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.39	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.40	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.41	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.45	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.46	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.47	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.0.51	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.3.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.4.0.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.4.0.19	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.4.0.21	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.4.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.4.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.9	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.10	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.11	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.13	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.1.14	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.2.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.2.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.2.8	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.5.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.6.0.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.6.8	Yes
Application	cisco	catalyst_sd-wan_manager	20.7.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.7.1.0.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.7.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.7.1eft2	Yes
Application	cisco	catalyst_sd-wan_manager	20.7.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.8.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.1eft2	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.2.0.01	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.2.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.2.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.8	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.12	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.16	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.17	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.18	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.20	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.21	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.23	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.24	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.25	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.26	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.0.29	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.3.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.4.0.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.4.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.4.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.4.1.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.4.1.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.1.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.2.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.2.7	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.2.13	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.2.14	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.2.16	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.2.21	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.5.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.9.6.0.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.10.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.10.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.10.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.11.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.11.1.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.11.1.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.2	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.3	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.3.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.4.0.03	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.4.0.4	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.4.0.6	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.4.1	Yes
Application	cisco	catalyst_sd-wan_manager	20.12.401	Yes

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanage-xss-xhN8M5jt Vendor Advisory ([email protected])