Cisco is stoppingering critical holes in its SD-WAN solutions and its smart software manager satellite. The most serious of these flaws could be exploited by an unauthenticated, remote attacker to execute arbitrary code on the affected system with root privileges. The flaws affect Cisco Smart Software Manager Satellite releases 5.1.0 and earlier; fixes are available in the Cisco Smart software Manager On-Prem releases 6.3.3 and later. Cisco users can view a full list of the affected software versions as well as the deployed fixed versions on its security advisory.
Source: https://threatpost.com/critical-cisco-sd-wan-bugs-rce-attacks/163204/