CVE-2021-1390

Published Mar 24, 2021
Last updated a year ago
CVSS medium 6.7
Overview

Description: A vulnerability in one of the diagnostic test CLI commands of Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary code on an affected device. To exploit this vulnerability, the attacker would need to have valid user credentials at privilege level 15. This vulnerability exists because the affected software permits modification of the run-time memory of an affected device under specific circumstances. An attacker could exploit this vulnerability by authenticating to the affected device and issuing a specific diagnostic test command at the CLI. A successful exploit could trigger a logic error in the code that was designed to restrict run-time memory modifications. The attacker could take advantage of this logic error to overwrite system memory locations and execute arbitrary code on the underlying Linux operating system (OS) of the affected device.
Source: ykramarz@cisco.com
NVD status: Modified
Risk scores

CVSS 3.1

Type: Primary
Base score: 6.7
Impact score: 5.9
Exploitability score: 0.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity: MEDIUM
CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses

ykramarz@cisco.com: CWE-123
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57D4F634-03D5-4D9F-901C-7E9CE45F2F38"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4463A1D1-E169-4F0B-91B2-FA126BB444CB"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.1b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D97F69C3-CAA6-491C-A0B6-6DC12B5AB472"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.1c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDD58C58-1B0C-4A71-8C02-F555CEF9C253"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.1d:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96852D16-AF50-4C70-B125-D2349E6765D7"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.1e:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A15B882A-BA60-4932-A55E-F4A798B30EEB"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.1s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C9C585C-A6EC-4385-B915-046C110BF95F"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EC2EE60-4A07-4D92-B9BC-BF07CF4F2BE9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.8.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47DBE4ED-1CD8-4134-9B33-17A91F44F17B"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "119A964D-ABC8-424D-8097-85B832A833BD"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0375BF9E-D04B-4E5B-9051-536806ECA44E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2266E5A2-B3F6-4389-B8E2-42CB845EC7F9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "012A6CF7-9104-4882-9C95-E6D4458AB778"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1d:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AF5214D-9257-498F-A3EB-C4EC18E2FEB2"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78DE7780-4E8B-4BB6-BDEB-58032EC65851"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F29CEE37-4044-4A3C-9685-C9C021FD346A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.2a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3DC5BB06-100F-42C9-8CEB-CC47FD26DDF3"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.2s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5292764A-7D1C-4E04-86EF-809CB68EDD25"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1FDA817-3A50-4B9E-8F4E-F613BDB3E9EE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.3a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E16D266-108F-4F8A-998D-F1CA25F2EAAD"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.3h:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F84AE35F-D016-4B8F-8FE2-C2ACB200DFED"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.3s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41D55481-C80E-4400-9C3D-9F6B1F7F13CE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4BF9829-F80E-4837-A420-39B291C4E17B"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.4c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D07F9539-CFBE-46F7-9F5E-93A68169797D"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5AB80E7-0714-44ED-9671-12C877B36A1E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.5f:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10182B94-6831-461E-B0FC-9476EAB6EBEF"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.9.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "961F8312-31B9-44E7-8858-EF8E2134F447"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB6BD18B-B9BD-452F-986E-16A6668E46B6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D136D2BC-FFB5-4912-A3B1-BD96148CB9A5"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A22256FE-431C-4AD9-9E7F-7EAC2D81B1B7"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CD5B3AB-27C2-4055-A3B7-0112D089FDA4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1d:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04081A51-E08F-4114-9276-584E836181D3"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1e:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADED0D82-2A4D-4235-BFAC-5EE2D862B652"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1f:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62A46516-CEB7-48D4-879B-341963A1FA31"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1g:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6EF98FA-6DF9-4935-9639-143E08462BC4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "763664F5-E6CD-4936-B2F8-C5E2D5EA7BB6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A443E93-6C4B-4F86-BA7C-7C2A929E795A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.10.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6ECEDD9D-6517-44BA-A95F-D1D5488C0E41"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E91F8704-6DAD-474A-84EA-04E4AF7BB9B1"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "314C7763-A64D-4023-9F3F-9A821AE4151F"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5820D71D-FC93-45AA-BC58-A26A1A39C936"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC1C85DD-69CC-4AA8-B219-651D57FC3506"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB26AE0F-85D8-4EAB-B9BD-457DD81FF0FE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.11.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B53E377A-0296-4D7A-B97C-576B0026543D"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C98DED36-D4B5-48D6-964E-EEEE97936700"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD98C9E8-3EA6-4160-970D-37C389576516"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8BEFEDA-B01A-480B-B03D-7ED5D08E4B67"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9027A528-2588-4C06-810B-5BB313FE4323"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7745ED34-D59D-49CC-B174-96BCA03B3374"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1w:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19AF4CF3-6E79-4EA3-974D-CD451A192BA9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1x:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "313BD54C-073C-4F27-82D5-C99EFC3A20F7"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1y:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93B96E01-3777-4C33-9225-577B469A6CE5"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1z:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65FC3CC1-CF4F-4A2D-A500-04395AFE8B47"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1za:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "027200FC-8AD4-47E4-A404-490AE4F997EC"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5019B59-508E-40B0-9C92-2C26F58E2FBE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.2a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "443D78BA-A3DA-4D1F-A4DF-2F426DC6B841"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.2s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1986DB1F-AD0A-42FE-8EC8-F18BA1AD4F99"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.2t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C6FB4DC-814D-49D2-BBE2-3861AE985A1C"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5750264-2990-4942-85F4-DB9746C5CA2B"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.3a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02352FD8-2A7B-41BD-9E4A-F312ABFDF3EF"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.3s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9173AD6-6658-4267-AAA7-D50D0B657528"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F02EE9D-45B1-43D6-B05D-6FF19472216B"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:16.12.4a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C1DBBCD-4C5A-43BB-8FB0-6F1AF99ED0D2"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E306B09C-CB48-4067-B60C-5F738555EEAC"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.1.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD446C51-E713-4E46-8328-0A0477D140D2"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.1.1s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FF0DD16-D76A-45EA-B01A-20C71AEFA3B4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.1.1t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BDD0CEC-4A19-438D-B2A1-8664A1D8F3C4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89369318-2E83-489F-B872-5F2E247BBF8F"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B7EE7C7-D6C1-4C35-8C80-EAF3FC7E7EFA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.2.1a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B51FA707-8DB1-4596-9122-D4BFEF17F400"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.2.1r:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C04DF35A-1B6F-420A-8D84-74EB41BF3700"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.2.1v:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "211CC9B2-6108-4C50-AB31-DC527C43053E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75CCB5F1-27F5-4FF9-8389-0A9ABCF7F070"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:17.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08DCCBA3-82D2-4444-B5D3-E5FC58D024F9"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
