CVE-2021-1580

Name of the Vulnerable Software and Affected Versions Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC (affected versions not specified)

Description The issue is related to multiple vulnerabilities in the web UI and API endpoints of the affected system, which could allow a remote attacker to perform a command injection or file upload attack. The vulnerability exists due to the lack of measures to neutralize special elements used in the operating system command. Exploitation of the vulnerability may allow a remote attacker to execute arbitrary commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.