CVE-2021-1581

Name of the Vulnerable Software and Affected Versions Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC (affected versions not specified)

Description The issue is related to multiple vulnerabilities in the web UI and API endpoints of the affected system. A remote attacker could exploit these vulnerabilities to perform a command injection or file upload attack. The vulnerability exists due to the lack of neutralization of special elements used in the operating system command. This could allow a remote attacker to execute arbitrary commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.