A vulnerability in Cisco Virtual Wide Area Application Services (vWAAS) with Cisco Enterprise NFV Infrastructure Software (NFVIS)-bundled images could allow an unauthenticated, remote attacker to log into the NFVIS CLI of an affected device by using accounts that have a default, static password. The vulnerability exists because the affected software has user accounts with default passwords. A successful exploit could allow the attacker to access the NFvis CLI with administrator privileges. There are no workarounds that address this vulnerability. Cisco has released free software updates that address the vulnerability described in this advisory.”]