CVE-2021-1566

Published Jun 16, 2021

Last updated a year ago

CVSS high 7.4

Overview

Description: A vulnerability in the Cisco Advanced Malware Protection (AMP) for Endpoints integration of Cisco AsyncOS for Cisco Email Security Appliance (ESA) and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to intercept traffic between an affected device and the AMP servers. This vulnerability is due to improper certificate validation when an affected device establishes TLS connections. A man-in-the-middle attacker could exploit this vulnerability by sending a crafted TLS packet to an affected device. A successful exploit could allow the attacker to spoof a trusted host and then extract sensitive information or alter certain API requests.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.4
Impact score: 5.2
Exploitability score: 2.2
Vector string: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5.8
Impact score: 4.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-295
ykramarz@cisco.com: CWE-296

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:email_security_appliance:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "678C2C6F-6D46-4BBE-A902-7AD031D8EBA8"
          },
          {
            "criteria": "cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C3A8C94-CD5C-4309-8F1B-B151B3D091CC",
            "versionEndExcluding": "12.5.3-035"
          }
        ],
        "operator": "AND"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:email_security_appliance:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "678C2C6F-6D46-4BBE-A902-7AD031D8EBA8"
          },
          {
            "criteria": "cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE1DE406-EA9E-40DD-B18B-C19DF63EC13B",
            "versionEndExcluding": "13.0.0-030",
            "versionStartIncluding": "13.0"
          }
        ],
        "operator": "AND"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:email_security_appliance:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "678C2C6F-6D46-4BBE-A902-7AD031D8EBA8"
          },
          {
            "criteria": "cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39DEA2BD-4772-4F8D-9CD2-1BB377ECF64B",
            "versionEndExcluding": "13.5.3-010",
            "versionStartIncluding": "13.5"
          }
        ],
        "operator": "AND"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:web_security_appliance:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7C2555C-7E97-475F-9EDC-027B51A40708"
          },
          {
            "criteria": "cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33FDC1BE-F1C3-4030-82CE-38D99DC30B5B",
            "versionEndExcluding": "11.8.3-021"
          }
        ],
        "operator": "AND"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:web_security_appliance:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7C2555C-7E97-475F-9EDC-027B51A40708"
          },
          {
            "criteria": "cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1CC6572-4281-45E1-9B33-6993B45E6B4F",
            "versionEndExcluding": "12.0.3-005",
            "versionStartIncluding": "12.0.0"
          }
        ],
        "operator": "AND"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:web_security_appliance:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7C2555C-7E97-475F-9EDC-027B51A40708"
          },
          {
            "criteria": "cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA889DAF-1699-4A22-8A4C-D589F7BF10A8",
            "versionEndExcluding": "12.5.1-043",
            "versionStartIncluding": "12.5.0"
          }
        ],
        "operator": "AND"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References