CVE-2021-1480

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vManage Software (affected versions not specified)

Description: The issue is related to errors in access control, which could allow an attacker to overwrite arbitrary files or execute arbitrary code. An unauthenticated, remote attacker may be able to execute arbitrary code, or an authenticated, local attacker may be able to gain escalated privileges on an affected system.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-250CWE-119CWE-20

Related Identifiers

BDU:2021-01950

CVE-2021-1480

Affected Products

Cisco Sd-Wan Vmanage

CVE-2021-1480

Weakness Enumeration

Related Identifiers

Affected Products

References · 8