minute read Share this article: The networking giant has rolled out patches for remote code-execution and command-injection security holes that could give attackers keys to the kingdom. Cisco has addressed two critical security vulnerabilities in the SD-WAN vManage Software, one of which could allow an unauthenticated attacker to carry out remote code execution (RCE) on corporate networks or steal information. The networking giant also disclosed a denial-of-service issue in vManage; and locally exploitable bugs that would allow an authenticated attacker to escalate privileges or gain unauthorized access to applications. Separately, Cisco patched two vulnerabilities in the Cisco HyperFlex HX platform, one of them rated critical.