CVE-2021-34708

Published Sep 9, 2021

Last updated a year ago

CVSS medium 6.7

Overview

Description: Multiple vulnerabilities in image verification checks of Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software images, and Cisco IOS XR Software for Cisco 8000 Series Routers could allow an authenticated, local attacker to execute arbitrary code on the underlying operating system. For more information about these vulnerabilities, see the Details section of this advisory.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.7
Impact score: 5.9
Exploitability score: 0.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-347
ykramarz@cisco.com: CWE-347

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:8101-32fh:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E055F58F-F9FB-4B27-841E-61ECAB5F42B8"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8101-32h:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F10CA0D1-1F9F-4D0E-B218-5BEB38ED6D09"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8102-64h:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A3C3DDAC-7D0F-4D1D-9632-F001F2EB5D34"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8201:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3D8E7FFF-82A8-4ECB-BA0C-CBF0C2FDA3A3"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8201-32fh:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "528BE0D3-E5ED-4836-B0D8-0C8508C5BDD7"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8202:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "87DC4C2F-01C5-4D89-8D79-E5D28EDAD0F2"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8800_12-slot:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4B4318C0-0FD0-46B3-8E23-94EC53A34A20"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8800_18-slot:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "16FC6220-78E1-44A6-A596-6368D3EF7CC4"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8800_4-slot:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DCAEDE0A-E6F9-4727-8DC2-F47579220BE0"
          },
          {
            "criteria": "cpe:2.3:h:cisco:8800_8-slot:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8E289FAD-04F0-4E3A-BC4D-8E5116F01AF0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3970EB8-C75E-4610-9772-A7BD0CF4B018",
            "versionEndExcluding": "7.3.2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:n540-12z20g-sys-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5DBE9A6C-04CC-4493-9E81-75C8851D5C36"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540-12z20g-sys-d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "95700A15-E623-45A8-9675-D57FCC765CEC"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540-24z8q2c-m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "43D99BD3-20FA-4202-83ED-046CC79A4CAD"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540-24z8q2c-sys:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1575601C-C0AC-4ABE-B54F-5698033054ED"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540-28z4c-sys-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "ACA4B812-AE22-485E-B302-E18250BF50CA"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540-28z4c-sys-d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CAF058BB-8F5B-4AB3-AF06-14A2BF73AD66"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540-acc-sys:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1727912A-9D84-4E9A-904A-2909B3B0D97E"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540x-12z16g-sys-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A00FB3BD-1BB7-4EC5-B9BD-160DB34CDBFB"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540x-12z16g-sys-d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A77C0653-2527-4B8D-A268-F81CCE99FB88"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540x-16z4g8q2c-a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3AA1EB84-5F1F-4E09-B9D6-F54886229406"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540x-16z4g8q2c-d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E09499F4-89B7-4DB7-A734-9A6E57618A91"
          },
          {
            "criteria": "cpe:2.3:h:cisco:n540x-acc-sys:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3B95A267-F823-4169-B64D-5F7393D19F70"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3970EB8-C75E-4610-9772-A7BD0CF4B018",
            "versionEndExcluding": "7.3.2"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42290FCA-82E3-4D64-801C-F65FF4CAAFBD",
            "versionEndExcluding": "7.4.1",
            "versionStartIncluding": "7.4.0"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References