Cisco has patched a high-severity vulnerability in its software-defined wide area network (SD-WAN) routers. The flaw exists in the command line interface (CLI) utility of Cisco IOX XE, used to configure the network device. An attacker could exploit this vulnerability by authenticating to the device and submitting a crafted input to the tool. The vulnerability has a CVSS 3.0 score of 7.8 out of 10 on the CvSS scale, which makes it high severity.
Source: https://threatpost.com/cisco-ios-xe-flaw-sd-wan-routers/155319/