CVE-2021-1600

Name of the Vulnerable Software and Affected Versions Cisco Intersight Virtual Appliance (affected versions not specified)

Description The issue is related to insufficient restrictions for IPv4 or IPv6 packets received on the external management interface, allowing an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. An attacker could exploit this by sending specific traffic to the interface on an affected device, potentially allowing access to sensitive internal services and making configuration changes on the affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.