CVE-2025-20147

A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, remote attacker to conduct a stored cross-site scripting attack (XSS) on an affected system. 

This vulnerability is due to improper sanitization of user input to the web-based management interface. An attacker could exploit this vulnerability by submitting a malicious script through the interface. A successful exploit could allow the attacker to conduct a stored XSS attack on the affected system.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
ciscoCNA
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
VendorProductVersion
ciscocatalyst_sd-wan_manager
17.2.4
ciscocatalyst_sd-wan_manager
17.2.5
ciscocatalyst_sd-wan_manager
17.2.6
ciscocatalyst_sd-wan_manager
17.2.7
ciscocatalyst_sd-wan_manager
17.2.8
ciscocatalyst_sd-wan_manager
17.2.9
ciscocatalyst_sd-wan_manager
17.2.10
ciscocatalyst_sd-wan_manager
18.2.0
ciscocatalyst_sd-wan_manager
18.3.0
ciscocatalyst_sd-wan_manager
18.3.1
ciscocatalyst_sd-wan_manager
18.3.1.1
ciscocatalyst_sd-wan_manager
18.3.3
ciscocatalyst_sd-wan_manager
18.3.3.1
ciscocatalyst_sd-wan_manager
18.3.4
ciscocatalyst_sd-wan_manager
18.3.5
ciscocatalyst_sd-wan_manager
18.3.6
ciscocatalyst_sd-wan_manager
18.3.6.1
ciscocatalyst_sd-wan_manager
18.3.7
ciscocatalyst_sd-wan_manager
18.3.8
ciscocatalyst_sd-wan_manager
18.4.0
ciscocatalyst_sd-wan_manager
18.4.0.1
ciscocatalyst_sd-wan_manager
18.4.1
ciscocatalyst_sd-wan_manager
18.4.3
ciscocatalyst_sd-wan_manager
18.4.4
ciscocatalyst_sd-wan_manager
18.4.5
ciscocatalyst_sd-wan_manager
18.4.6
ciscocatalyst_sd-wan_manager
18.4.302
ciscocatalyst_sd-wan_manager
18.4.303
ciscocatalyst_sd-wan_manager
18.4.501_es:_es
ciscocatalyst_sd-wan_manager
19.0.0
ciscocatalyst_sd-wan_manager
19.0.1a:a
ciscocatalyst_sd-wan_manager
19.1.0
ciscocatalyst_sd-wan_manager
19.2.0
ciscocatalyst_sd-wan_manager
19.2.1
ciscocatalyst_sd-wan_manager
19.2.2
ciscocatalyst_sd-wan_manager
19.2.3
ciscocatalyst_sd-wan_manager
19.2.4
ciscocatalyst_sd-wan_manager
19.2.4.0.1
ciscocatalyst_sd-wan_manager
19.2.4.0.8
ciscocatalyst_sd-wan_manager
19.2.4.0.9
ciscocatalyst_sd-wan_manager
19.2.31
ciscocatalyst_sd-wan_manager
19.2.32
ciscocatalyst_sd-wan_manager
19.2.097
ciscocatalyst_sd-wan_manager
19.2.098
ciscocatalyst_sd-wan_manager
19.2.099
ciscocatalyst_sd-wan_manager
19.2.929
ciscocatalyst_sd-wan_manager
19.3.0
ciscocatalyst_sd-wan_manager
20.1.1
ciscocatalyst_sd-wan_manager
20.1.1.1
ciscocatalyst_sd-wan_manager
20.1.2
ciscocatalyst_sd-wan_manager
20.1.2_937:_937
ciscocatalyst_sd-wan_manager
20.1.3
ciscocatalyst_sd-wan_manager
20.1.3.1
ciscocatalyst_sd-wan_manager
20.1.12
ciscocatalyst_sd-wan_manager
20.3.1
ciscocatalyst_sd-wan_manager
20.3.2
ciscocatalyst_sd-wan_manager
20.3.2.0.5
ciscocatalyst_sd-wan_manager
20.3.2.0.6
ciscocatalyst_sd-wan_manager
20.3.2.1
ciscocatalyst_sd-wan_manager
20.3.2.1_927:_927
ciscocatalyst_sd-wan_manager
20.3.2.1_930:_930
ciscocatalyst_sd-wan_manager
20.3.2_925:_925
ciscocatalyst_sd-wan_manager
20.3.2_928:_928
ciscocatalyst_sd-wan_manager
20.3.2_929:_929
ciscocatalyst_sd-wan_manager
20.3.2_937:_937
ciscocatalyst_sd-wan_manager
20.3.3
ciscocatalyst_sd-wan_manager
20.3.3.0.2
ciscocatalyst_sd-wan_manager
20.3.3.0.4
ciscocatalyst_sd-wan_manager
20.3.3.0.8
ciscocatalyst_sd-wan_manager
20.3.3.0.14
ciscocatalyst_sd-wan_manager
20.3.3.0.16
ciscocatalyst_sd-wan_manager
20.3.3.0.17
ciscocatalyst_sd-wan_manager
20.3.3.0.18
ciscocatalyst_sd-wan_manager
20.3.3.1
ciscocatalyst_sd-wan_manager
20.3.3.1.1
ciscocatalyst_sd-wan_manager
20.3.3.1.2
ciscocatalyst_sd-wan_manager
20.3.3.1.5
ciscocatalyst_sd-wan_manager
20.3.3.1.7
ciscocatalyst_sd-wan_manager
20.3.3.1.10
ciscocatalyst_sd-wan_manager
20.3.3.2
ciscocatalyst_sd-wan_manager
20.3.4
ciscocatalyst_sd-wan_manager
20.3.4.0.1
ciscocatalyst_sd-wan_manager
20.3.4.0.5
ciscocatalyst_sd-wan_manager
20.3.4.0.6
ciscocatalyst_sd-wan_manager
20.3.4.0.9
ciscocatalyst_sd-wan_manager
20.3.4.0.11
ciscocatalyst_sd-wan_manager
20.3.4.0.19
ciscocatalyst_sd-wan_manager
20.3.4.0.20
ciscocatalyst_sd-wan_manager
20.3.4.0.24
ciscocatalyst_sd-wan_manager
20.3.4.0.25
ciscocatalyst_sd-wan_manager
20.3.4.0.26
ciscocatalyst_sd-wan_manager
20.3.4.1
ciscocatalyst_sd-wan_manager
20.3.4.1.1
ciscocatalyst_sd-wan_manager
20.3.4.1.2
ciscocatalyst_sd-wan_manager
20.3.4.2
ciscocatalyst_sd-wan_manager
20.3.4.2.1
ciscocatalyst_sd-wan_manager
20.3.4.2.2
ciscocatalyst_sd-wan_manager
20.3.4.3
ciscocatalyst_sd-wan_manager
20.3.5
ciscocatalyst_sd-wan_manager
20.3.5.0.7
ciscocatalyst_sd-wan_manager
20.3.5.0.8
ciscocatalyst_sd-wan_manager
20.3.5.0.9
ciscocatalyst_sd-wan_manager
20.3.5.1
ciscocatalyst_sd-wan_manager
20.3.6
ciscocatalyst_sd-wan_manager
20.3.7
ciscocatalyst_sd-wan_manager
20.3.7.1
ciscocatalyst_sd-wan_manager
20.3.7.2
ciscocatalyst_sd-wan_manager
20.3.8
ciscocatalyst_sd-wan_manager
20.3.813
ciscocatalyst_sd-wan_manager
20.3.814
ciscocatalyst_sd-wan_manager
20.4.1
ciscocatalyst_sd-wan_manager
20.4.1.0.01
ciscocatalyst_sd-wan_manager
20.4.1.0.1
ciscocatalyst_sd-wan_manager
20.4.1.0.02
ciscocatalyst_sd-wan_manager
20.4.1.1
ciscocatalyst_sd-wan_manager
20.4.1.1.5
ciscocatalyst_sd-wan_manager
20.4.1.2
ciscocatalyst_sd-wan_manager
20.4.2
ciscocatalyst_sd-wan_manager
20.4.2.0.1
ciscocatalyst_sd-wan_manager
20.4.2.0.2
ciscocatalyst_sd-wan_manager
20.4.2.0.4
ciscocatalyst_sd-wan_manager
20.4.2.1
ciscocatalyst_sd-wan_manager
20.4.2.1.1
ciscocatalyst_sd-wan_manager
20.4.2.2
ciscocatalyst_sd-wan_manager
20.4.2.2.1
ciscocatalyst_sd-wan_manager
20.4.2.2.2
ciscocatalyst_sd-wan_manager
20.4.2.2.3
ciscocatalyst_sd-wan_manager
20.4.2.2.4
ciscocatalyst_sd-wan_manager
20.4.2.2.8
ciscocatalyst_sd-wan_manager
20.4.2.3
ciscocatalyst_sd-wan_manager
20.5.0.1.1
ciscocatalyst_sd-wan_manager
20.5.1
ciscocatalyst_sd-wan_manager
20.5.1.0.1
ciscocatalyst_sd-wan_manager
20.5.1.0.2
ciscocatalyst_sd-wan_manager
20.5.1.1
ciscocatalyst_sd-wan_manager
20.5.1.2
ciscocatalyst_sd-wan_manager
20.6.0.18.3
ciscocatalyst_sd-wan_manager
20.6.0.18.4
ciscocatalyst_sd-wan_manager
20.6.1
ciscocatalyst_sd-wan_manager
20.6.1.0.1
ciscocatalyst_sd-wan_manager
20.6.1.1
ciscocatalyst_sd-wan_manager
20.6.1.2
ciscocatalyst_sd-wan_manager
20.6.2
ciscocatalyst_sd-wan_manager
20.6.2.0.4
ciscocatalyst_sd-wan_manager
20.6.2.1
ciscocatalyst_sd-wan_manager
20.6.2.2
ciscocatalyst_sd-wan_manager
20.6.2.2.2
ciscocatalyst_sd-wan_manager
20.6.2.2.3
ciscocatalyst_sd-wan_manager
20.6.2.2.4
ciscocatalyst_sd-wan_manager
20.6.2.2.7
ciscocatalyst_sd-wan_manager
20.6.3
ciscocatalyst_sd-wan_manager
20.6.3.0.2
ciscocatalyst_sd-wan_manager
20.6.3.0.5
ciscocatalyst_sd-wan_manager
20.6.3.0.7
ciscocatalyst_sd-wan_manager
20.6.3.0.10
ciscocatalyst_sd-wan_manager
20.6.3.0.11
ciscocatalyst_sd-wan_manager
20.6.3.0.14
ciscocatalyst_sd-wan_manager
20.6.3.0.18
ciscocatalyst_sd-wan_manager
20.6.3.0.19
ciscocatalyst_sd-wan_manager
20.6.3.0.23
ciscocatalyst_sd-wan_manager
20.6.3.0.25
ciscocatalyst_sd-wan_manager
20.6.3.0.27
ciscocatalyst_sd-wan_manager
20.6.3.0.29
ciscocatalyst_sd-wan_manager
20.6.3.0.31
ciscocatalyst_sd-wan_manager
20.6.3.0.32
ciscocatalyst_sd-wan_manager
20.6.3.0.33
ciscocatalyst_sd-wan_manager
20.6.3.0.38
ciscocatalyst_sd-wan_manager
20.6.3.0.39
ciscocatalyst_sd-wan_manager
20.6.3.0.40
ciscocatalyst_sd-wan_manager
20.6.3.0.41
ciscocatalyst_sd-wan_manager
20.6.3.0.45
ciscocatalyst_sd-wan_manager
20.6.3.0.46
ciscocatalyst_sd-wan_manager
20.6.3.0.47
ciscocatalyst_sd-wan_manager
20.6.3.0.51
ciscocatalyst_sd-wan_manager
20.6.3.1
ciscocatalyst_sd-wan_manager
20.6.3.1.1
ciscocatalyst_sd-wan_manager
20.6.3.2
ciscocatalyst_sd-wan_manager
20.6.3.3
ciscocatalyst_sd-wan_manager
20.6.3.4
ciscocatalyst_sd-wan_manager
20.6.4
ciscocatalyst_sd-wan_manager
20.6.4.0.4
ciscocatalyst_sd-wan_manager
20.6.4.0.19
ciscocatalyst_sd-wan_manager
20.6.4.0.21
ciscocatalyst_sd-wan_manager
20.6.4.1
ciscocatalyst_sd-wan_manager
20.6.4.2
ciscocatalyst_sd-wan_manager
20.6.5
ciscocatalyst_sd-wan_manager
20.6.5.1
ciscocatalyst_sd-wan_manager
20.6.5.1.2
ciscocatalyst_sd-wan_manager
20.6.5.1.3
ciscocatalyst_sd-wan_manager
20.6.5.1.4
ciscocatalyst_sd-wan_manager
20.6.5.1.5
ciscocatalyst_sd-wan_manager
20.6.5.1.6
ciscocatalyst_sd-wan_manager
20.6.5.1.7
ciscocatalyst_sd-wan_manager
20.6.5.1.9
ciscocatalyst_sd-wan_manager
20.6.5.1.10
ciscocatalyst_sd-wan_manager
20.6.5.1.11
ciscocatalyst_sd-wan_manager
20.6.5.1.13
ciscocatalyst_sd-wan_manager
20.6.5.1.14
ciscocatalyst_sd-wan_manager
20.6.5.2
ciscocatalyst_sd-wan_manager
20.6.5.2.1
ciscocatalyst_sd-wan_manager
20.6.5.2.3
ciscocatalyst_sd-wan_manager
20.6.5.2.4
ciscocatalyst_sd-wan_manager
20.6.5.2.8
ciscocatalyst_sd-wan_manager
20.6.5.3
ciscocatalyst_sd-wan_manager
20.6.5.4
ciscocatalyst_sd-wan_manager
20.6.5.5
ciscocatalyst_sd-wan_manager
20.6.6
ciscocatalyst_sd-wan_manager
20.6.6.0.1
ciscocatalyst_sd-wan_manager
20.6.7
ciscocatalyst_sd-wan_manager
20.6.8
ciscocatalyst_sd-wan_manager
20.7.1
ciscocatalyst_sd-wan_manager
20.7.1.0.2
ciscocatalyst_sd-wan_manager
20.7.1.1
ciscocatalyst_sd-wan_manager
20.7.1eft2:eft2
ciscocatalyst_sd-wan_manager
20.7.2
ciscocatalyst_sd-wan_manager
20.8.1
ciscocatalyst_sd-wan_manager
20.9.1
ciscocatalyst_sd-wan_manager
20.9.1.1
ciscocatalyst_sd-wan_manager
20.9.1eft2:eft2
ciscocatalyst_sd-wan_manager
20.9.2
ciscocatalyst_sd-wan_manager
20.9.2.0.01
ciscocatalyst_sd-wan_manager
20.9.2.1
ciscocatalyst_sd-wan_manager
20.9.2.2
ciscocatalyst_sd-wan_manager
20.9.2.3
ciscocatalyst_sd-wan_manager
20.9.3
ciscocatalyst_sd-wan_manager
20.9.3.0.2
ciscocatalyst_sd-wan_manager
20.9.3.0.3
ciscocatalyst_sd-wan_manager
20.9.3.0.4
ciscocatalyst_sd-wan_manager
20.9.3.0.5
ciscocatalyst_sd-wan_manager
20.9.3.0.7
ciscocatalyst_sd-wan_manager
20.9.3.0.8
ciscocatalyst_sd-wan_manager
20.9.3.0.12
ciscocatalyst_sd-wan_manager
20.9.3.0.16
ciscocatalyst_sd-wan_manager
20.9.3.0.17
ciscocatalyst_sd-wan_manager
20.9.3.0.18
ciscocatalyst_sd-wan_manager
20.9.3.0.20
ciscocatalyst_sd-wan_manager
20.9.3.0.21
ciscocatalyst_sd-wan_manager
20.9.3.0.23
ciscocatalyst_sd-wan_manager
20.9.3.0.24
ciscocatalyst_sd-wan_manager
20.9.3.0.25
ciscocatalyst_sd-wan_manager
20.9.3.0.26
ciscocatalyst_sd-wan_manager
20.9.3.0.29
ciscocatalyst_sd-wan_manager
20.9.3.1
ciscocatalyst_sd-wan_manager
20.9.3.2
ciscocatalyst_sd-wan_manager
20.9.4
ciscocatalyst_sd-wan_manager
20.9.4.0.4
ciscocatalyst_sd-wan_manager
20.9.4.1
ciscocatalyst_sd-wan_manager
20.9.4.1.1
ciscocatalyst_sd-wan_manager
20.9.4.1.3
ciscocatalyst_sd-wan_manager
20.9.4.1.6
ciscocatalyst_sd-wan_manager
20.9.5
ciscocatalyst_sd-wan_manager
20.9.5.1
ciscocatalyst_sd-wan_manager
20.9.5.1.4
ciscocatalyst_sd-wan_manager
20.9.5.2
ciscocatalyst_sd-wan_manager
20.9.5.2.1
ciscocatalyst_sd-wan_manager
20.9.5.2.7
ciscocatalyst_sd-wan_manager
20.9.5.2.13
ciscocatalyst_sd-wan_manager
20.9.5.2.14
ciscocatalyst_sd-wan_manager
20.9.5.2.16
ciscocatalyst_sd-wan_manager
20.9.5.2.21
ciscocatalyst_sd-wan_manager
20.9.5.3
ciscocatalyst_sd-wan_manager
20.9.6
ciscocatalyst_sd-wan_manager
20.9.6.0.3
ciscocatalyst_sd-wan_manager
20.10.1
ciscocatalyst_sd-wan_manager
20.10.1.1
ciscocatalyst_sd-wan_manager
20.10.1.2
ciscocatalyst_sd-wan_manager
20.11.1
ciscocatalyst_sd-wan_manager
20.11.1.1
ciscocatalyst_sd-wan_manager
20.11.1.2
ciscocatalyst_sd-wan_manager
20.12.1
ciscocatalyst_sd-wan_manager
20.12.2
ciscocatalyst_sd-wan_manager
20.12.3
ciscocatalyst_sd-wan_manager
20.12.3.1
ciscocatalyst_sd-wan_manager
20.12.4
ciscocatalyst_sd-wan_manager
20.12.4.0.03
ciscocatalyst_sd-wan_manager
20.12.4.0.4
ciscocatalyst_sd-wan_manager
20.12.4.0.6
ciscocatalyst_sd-wan_manager
20.12.4.1
ciscocatalyst_sd-wan_manager
20.12.401
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanage-xss-xhN8M5jt