Cisco SD-WAN Software could allow a remote authenticated malicious user to bypass security restrictions, caused by improper verification of digital signatures for patch images. By crafting an unsigned software patch, an attacker could exploit this vulnerability to boot a malicious software patch image.