CVE-2021-1301
Published Jan 20, 2021
Last updated a year ago
Overview
- Description
- Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
- Source
- ykramarz@cisco.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 3.0
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios_xe_sd-wan:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "16266B9E-E613-45FA-A02B-51EED8BEFCC9"
},
{
"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:18.3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4CBD6FD9-84EE-416C-B77D-843D2FAAF1BC"
},
{
"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:18.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F4C9F1DA-0527-4442-B0B4-4467960D30C0"
},
{
"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:19.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C535AB3-DCCE-4CFB-8479-08550552E863"
},
{
"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:19.2.99:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B74606C6-B292-4D23-8652-5CF49BDD8369"
},
{
"criteria": "cpe:2.3:o:cisco:sd-wan_vsmart_controller_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AFBC49D2-5618-416A-AE3C-6421B8B09C80"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:vedge_100_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "66AEE108-5CF9-4F19-9A52-40850F850E91"
},
{
"criteria": "cpe:2.3:h:cisco:vedge_1000_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C7AF418B-E5C4-4FEA-A9B9-9D29002702CE"
},
{
"criteria": "cpe:2.3:h:cisco:vedge_100b_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E8282DC4-099F-4379-8B2A-7B876AE29779"
},
{
"criteria": "cpe:2.3:h:cisco:vedge_100m_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E9952ECE-2659-4CAC-B29C-6439391FADDB"
},
{
"criteria": "cpe:2.3:h:cisco:vedge_100wm_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "BBAF9E5F-C858-44C8-9F81-0916324CF513"
},
{
"criteria": "cpe:2.3:h:cisco:vedge_2000_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1FA0F3A1-3442-4491-95D6-F5B17A09DB73"
},
{
"criteria": "cpe:2.3:h:cisco:vedge_5000_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E7E1CFE1-8CF7-48BE-833F-03F72B3BAFAB"
},
{
"criteria": "cpe:2.3:h:cisco:vedge_cloud_router:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E3773F59-DF2E-4387-8E27-C08FE1E6549D"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AE3D96F7-3574-443F-9AD4-5E62E0F5E4F5"
},
{
"criteria": "cpe:2.3:a:cisco:sd-wan_vbond_orchestrator:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "05AFD69C-BB2C-43E0-89CF-FDA00B8F4CB5"
}
],
"operator": "OR"
}
]
}
]