PT-2021-2977 · Cisco · Cisco Video Surveillance 8000 Series Ip Cameras

Qian Chen

Published

2021-05-05

Updated

2021-05-17

CVE-2021-1521

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Cisco Video Surveillance 8000 Series IP Cameras (affected versions not specified)

Description The issue is related to the Cisco Discovery Protocol implementation, which lacks proper checks when processing messages. This allows an unauthenticated, adjacent attacker to send a malicious packet and cause the IP camera to reload, resulting in a denial of service (DoS) condition. The attacker must be in the same broadcast domain as the affected device to exploit this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2021-02564

CVE-2021-1521

Affected Products

Cisco Video Surveillance 8000 Series Ip Cameras

PT-2021-2977 · Cisco · Cisco Video Surveillance 8000 Series Ip Cameras

CVE-2021-1521

Weakness Enumeration

Related Identifiers

Affected Products

References · 5