CVE-2021-1263

Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks against an affected device, which could allow the attacker to take certain actions with root privileges on the device. For more information about these vulnerabilities, see the Details section of this advisory.

CVSS v3 7.8 HIGH
CVSS v2.0 7.2 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-cmdinjm-9QMSmgcn	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:h:cisco:vedge_100_router:-:::::::*
	cpe:2.3:h:cisco:vedge_1000_router:-:::::::*
	cpe:2.3:h:cisco:vedge_100b_router:-:::::::*
	cpe:2.3:h:cisco:vedge_100m_router:-:::::::*
	cpe:2.3:h:cisco:vedge_100wm_router:-:::::::*
	cpe:2.3:h:cisco:vedge_2000_router:-:::::::*
	cpe:2.3:h:cisco:vedge_5000_router:-:::::::*
	cpe:2.3:h:cisco:vedge_cloud_router:-:::::::*

OR	cpe:2.3:o:cisco:sd-wan_firmware:18.2.0:::::::*
	cpe:2.3:o:cisco:sd-wan_firmware:18.3.0:::::::*
	cpe:2.3:o:cisco:sd-wan_firmware:18.3.8:::::::*
	cpe:2.3:o:cisco:sd-wan_firmware:18.4.6:::::::*
	cpe:2.3:o:cisco:sd-wan_firmware:19.2.3:::::::*
	cpe:2.3:o:cisco:sd-wan_firmware:19.2.99:::::::*
	cpe:2.3:o:cisco:sd-wan_firmware:20.1.0:::::::*
	cpe:2.3:o:cisco:sd-wan_vsmart_controller_firmware::::::::

Configuration 2 (hide)

OR	cpe:2.3:a:cisco:catalyst_sd-wan_manager:-:::::::*
	cpe:2.3:a:cisco:sd-wan_vbond_orchestrator:-:::::::*

History

No history.

Information

Published : 2021-01-20 20:15

Updated : 2023-10-06 16:24

NVD link : CVE-2021-1263

Mitre link : CVE-2021-1263

CVE.ORG link : CVE-2021-1263

JSON object : View

Products Affected

cisco

sd-wan_vsmart_controller_firmware
catalyst_sd-wan_manager
vedge_cloud_router
vedge_100_router
vedge_100wm_router
vedge_1000_router
sd-wan_vbond_orchestrator
vedge_2000_router
vedge_5000_router
vedge_100b_router
vedge_100m_router
sd-wan_firmware

CWE

CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-20

Improper Input Validation

{"id": "CVE-2021-1263", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 2.8}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2021-01-20T20:15:15.127", "references": [{"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-cmdinjm-9QMSmgcn", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-77"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks against an affected device, which could allow the attacker to take certain actions with root privileges on the device. For more information about these vulnerabilities, see the Details section of this advisory."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades en los productos Cisco SD-WAN, podr\u00edan permitir a un atacante autenticado llevar a cabo ataques de inyecci\u00f3n de comandos contra un dispositivo afectado, lo que podr\u00eda permitirle al atacante tomar determinadas acciones con privilegios root en el dispositivo. Para m\u00e1s informaci\u00f3n sobre estas vulnerabilidades, consulte la secci\u00f3n Detalles de este aviso"}], "lastModified": "2023-10-06T16:24:48.993", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:vedge_100_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "66AEE108-5CF9-4F19-9A52-40850F850E91"}, {"criteria": "cpe:2.3:h:cisco:vedge_1000_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C7AF418B-E5C4-4FEA-A9B9-9D29002702CE"}, {"criteria": "cpe:2.3:h:cisco:vedge_100b_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E8282DC4-099F-4379-8B2A-7B876AE29779"}, {"criteria": "cpe:2.3:h:cisco:vedge_100m_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E9952ECE-2659-4CAC-B29C-6439391FADDB"}, {"criteria": "cpe:2.3:h:cisco:vedge_100wm_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BBAF9E5F-C858-44C8-9F81-0916324CF513"}, {"criteria": "cpe:2.3:h:cisco:vedge_2000_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1FA0F3A1-3442-4491-95D6-F5B17A09DB73"}, {"criteria": "cpe:2.3:h:cisco:vedge_5000_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E7E1CFE1-8CF7-48BE-833F-03F72B3BAFAB"}, {"criteria": "cpe:2.3:h:cisco:vedge_cloud_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E3773F59-DF2E-4387-8E27-C08FE1E6549D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:18.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF0E7F2D-6999-4FCD-A922-B57070FD9BCB"}, {"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:18.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2C163B3-5B5D-4216-91FC-42757E3A680D"}, {"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:18.3.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CBD6FD9-84EE-416C-B77D-843D2FAAF1BC"}, {"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:18.4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A04E45E9-9905-4FBC-B632-5EF429F6FC52"}, {"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:19.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "478B7BB3-6358-46F6-8F59-786BA8D2AF5B"}, {"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:19.2.99:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B74606C6-B292-4D23-8652-5CF49BDD8369"}, {"criteria": "cpe:2.3:o:cisco:sd-wan_firmware:20.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9FF9C5E2-1A91-43A0-8F51-05A2E204BF01"}, {"criteria": "cpe:2.3:o:cisco:sd-wan_vsmart_controller_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFBC49D2-5618-416A-AE3C-6421B8B09C80"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:catalyst_sd-wan_manager:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE3D96F7-3574-443F-9AD4-5E62E0F5E4F5"}, {"criteria": "cpe:2.3:a:cisco:sd-wan_vbond_orchestrator:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05AFD69C-BB2C-43E0-89CF-FDA00B8F4CB5"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}

7.8 /10