CVE-2021-1275

Name of the Vulnerable Software and Affected Versions Cisco SD-WAN vManage Software (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the software that could allow an unauthenticated, remote attacker to execute arbitrary code, gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges. The vulnerability is related to errors in resource management in the Cisco SD-WAN API component. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.