Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Silver Peak Systems, Inc. — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting Silver Peak Systems, Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Silver Peak Systems provides SD-WAN solutions to optimize network performance and connectivity. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with 8 CVEs currently on record. The company's security posture has been challenged by authentication bypass flaws and insecure default configurations. While no major public security incidents have been widely reported, the CVE history indicates potential attack surfaces that could lead to unauthorized network access or system compromise. Organizations implementing Silver Peak solutions should prioritize regular patching and hardening to mitigate these risks.

Top products by Silver Peak Systems, Inc.: Unity Orchestrator 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator,   3. EdgeConnect in AWS, Azure, GCP ECOS 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator  3. EdgeConnect in AWS, Azure, GCP
CVE IDTitleCVSSSeverityPublished
CVE-2020-12148 OS Command Injection - nslookup API — ECOSCWE-78 6.8 Medium2020-12-11
CVE-2020-12149 OS Command Injection - Management File Upload — ECOSCWE-78 6.8 Medium2020-12-11
CVE-2020-12146 Silver Peak Unity OrchestratorTM subject to path traversal. — Unity Orchestrator 6.6 Medium2020-11-05
CVE-2020-12147 Unauthorized queries against the Silver Peak Unity OrchestratorTM MySQL database. — Unity Orchestrator 6.6 Medium2020-11-05
CVE-2020-12145 Silver Peak Unity OrchestratorTM authentication can be subverted through manipulation of HTTP headers. — Unity Orchestrator 6.6 Medium2020-11-05
CVE-2020-12142 IPSec UDP key material can be retrieved from EdgeConnect by a user with admin credentials — 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator,   3. EdgeConnect in AWS, Azure, GCPCWE-668 4.8 Medium2020-05-05
CVE-2020-12144 The certificate used to identify the Silver Peak Cloud Portal to EdgeConnect devices is not validated — 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator  3. EdgeConnect in AWS, Azure, GCPCWE-295 6.0 Medium2020-05-05
CVE-2020-12143 The certificate used to identify Orchestrator to EdgeConnect devices is not validated — 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator,   3. EdgeConnect in AWS, Azure, GCPCWE-295 6.0 Medium2020-05-05

This page lists every published CVE security advisory associated with Silver Peak Systems, Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.