CVE-2021-1392

A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ciscoCNA
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
VendorProductVersion
ciscoios
15.0\(1\)ey
ciscoios
15.0\(1\)ey1
ciscoios
15.0\(1\)ey2
ciscoios
15.1\(3\)svs
ciscoios
15.1\(3\)svt1
ciscoios
15.2\(1\)ey
ciscoios
15.2\(2\)e
ciscoios
15.2\(2\)e1
ciscoios
15.2\(2\)e2
ciscoios
15.2\(2\)e3
ciscoios
15.2\(2\)e4
ciscoios
15.2\(2\)e5
ciscoios
15.2\(2\)e5a
ciscoios
15.2\(2\)e5b
ciscoios
15.2\(2\)e6
ciscoios
15.2\(2\)e7
ciscoios
15.2\(2\)e7b
ciscoios
15.2\(2\)e8
ciscoios
15.2\(2\)e9
ciscoios
15.2\(2\)e10
ciscoios
15.2\(2\)ea
ciscoios
15.2\(2\)ea1
ciscoios
15.2\(2\)ea2
ciscoios
15.2\(2\)ea3
ciscoios
15.2\(2\)eb
ciscoios
15.2\(2\)eb1
ciscoios
15.2\(2\)eb2
ciscoios
15.2\(2a\)e2
ciscoios
15.2\(2b\)e
ciscoios
15.2\(3\)e1
ciscoios
15.2\(3\)e2
ciscoios
15.2\(3\)e3
ciscoios
15.2\(3\)e4
ciscoios
15.2\(3\)e5
ciscoios
15.2\(3\)ea
ciscoios
15.2\(4\)e5a
ciscoios
15.2\(4\)ea
ciscoios
15.2\(4\)ea1
ciscoios
15.2\(4\)ea2
ciscoios
15.2\(4\)ea3
ciscoios
15.2\(4\)ea4
ciscoios
15.2\(4\)ea5
ciscoios
15.2\(4\)ea6
ciscoios
15.2\(4\)ea7
ciscoios
15.2\(4\)ea8
ciscoios
15.2\(4\)ea9
ciscoios
15.2\(4\)ea9a
ciscoios
15.2\(4\)ea10
ciscoios
15.2\(4\)ec1
ciscoios
15.2\(4\)ec2
ciscoios
15.2\(4\)jaz
ciscoios
15.2\(5\)e
ciscoios
15.2\(5\)e1
ciscoios
15.2\(5\)e2
ciscoios
15.2\(5\)e2b
ciscoios
15.2\(5\)e2c
ciscoios
15.2\(5\)ea
ciscoios
15.2\(5a\)e1
ciscoios
15.2\(6\)e
ciscoios
15.2\(6\)e0a
ciscoios
15.2\(6\)e0c
ciscoios
15.2\(6\)e1
ciscoios
15.2\(6\)e1a
ciscoios
15.2\(6\)e1s
ciscoios
15.2\(7\)e0b
ciscoios
15.2\(7a\)e0b
ciscoios
15.2\(7b\)e0b
ciscoios
15.3\(3\)ja1
ciscoios
15.3\(3\)ja4
ciscoios
15.3\(3\)ja5
ciscoios
15.3\(3\)ja6
ciscoios
15.3\(3\)ja7
ciscoios
15.3\(3\)ja8
ciscoios
15.3\(3\)ja10
ciscoios
15.3\(3\)ja11
ciscoios
15.3\(3\)ja12
ciscoios
15.3\(3\)jaa
ciscoios
15.3\(3\)jax
ciscoios
15.3\(3\)jax1
ciscoios
15.3\(3\)jax2
ciscoios
15.3\(3\)jb
ciscoios
15.3\(3\)jbb
ciscoios
15.3\(3\)jbb1
ciscoios
15.3\(3\)jbb2
ciscoios
15.3\(3\)jbb4
ciscoios
15.3\(3\)jbb5
ciscoios
15.3\(3\)jbb6
ciscoios
15.3\(3\)jbb6a
ciscoios
15.3\(3\)jbb8
ciscoios
15.3\(3\)jc
ciscoios
15.3\(3\)jc1
ciscoios
15.3\(3\)jc2
ciscoios
15.3\(3\)jc3
ciscoios
15.3\(3\)jc4
ciscoios
15.3\(3\)jc5
ciscoios
15.3\(3\)jc6
ciscoios
15.3\(3\)jc8
ciscoios
15.3\(3\)jc9
ciscoios
15.3\(3\)jc14
ciscoios
15.3\(3\)jd
ciscoios
15.3\(3\)jd2
ciscoios
15.3\(3\)jd3
ciscoios
15.3\(3\)jd4
ciscoios
15.3\(3\)jd5
ciscoios
15.3\(3\)jd6
ciscoios
15.3\(3\)jd7
ciscoios
15.3\(3\)jd8
ciscoios
15.3\(3\)jd9
ciscoios
15.3\(3\)jd11
ciscoios
15.3\(3\)jd12
ciscoios
15.3\(3\)jd13
ciscoios
15.3\(3\)jd14
ciscoios
15.3\(3\)jd16
ciscoios
15.3\(3\)jd17
ciscoios
15.3\(3\)je
ciscoios
15.3\(3\)jf
ciscoios
15.3\(3\)jf1
ciscoios
15.3\(3\)jf2
ciscoios
15.3\(3\)jf4
ciscoios
15.3\(3\)jf5
ciscoios
15.3\(3\)jf6
ciscoios
15.3\(3\)jf7
ciscoios
15.3\(3\)jf8
ciscoios
15.3\(3\)jf9
ciscoios
15.3\(3\)jf10
ciscoios
15.3\(3\)jf11
ciscoios
15.3\(3\)jf12
ciscoios
15.3\(3\)jf12i
ciscoios
15.3\(3\)jf13
ciscoios
15.3\(3\)jg
ciscoios
15.3\(3\)jg1
ciscoios
15.3\(3\)jh
ciscoios
15.3\(3\)jh1
ciscoios
15.3\(3\)ji1
ciscoios
15.3\(3\)ji3
ciscoios
15.3\(3\)ji4
ciscoios
15.3\(3\)ji5
ciscoios
15.3\(3\)ji6
ciscoios
15.3\(3\)jj
ciscoios
15.3\(3\)jj1
ciscoios
15.3\(3\)jk
ciscoios
15.3\(3\)jk1
ciscoios
15.3\(3\)jk1t
ciscoios
15.3\(3\)jk2
ciscoios
15.3\(3\)jk2a
ciscoios
15.3\(3\)jk3
ciscoios
15.3\(3\)jk4
ciscoios
15.3\(3\)jn
ciscoios
15.3\(3\)jn3
ciscoios
15.3\(3\)jn4
ciscoios
15.3\(3\)jn6
ciscoios
15.3\(3\)jn7
ciscoios
15.3\(3\)jn8
ciscoios
15.3\(3\)jn9
ciscoios
15.3\(3\)jn11
ciscoios
15.3\(3\)jn13
ciscoios
15.3\(3\)jn14
ciscoios
15.3\(3\)jn15
ciscoios
15.3\(3\)jnb
ciscoios
15.3\(3\)jnb1
ciscoios
15.3\(3\)jnb2
ciscoios
15.3\(3\)jnb3
ciscoios
15.3\(3\)jnb4
ciscoios
15.3\(3\)jnb5
ciscoios
15.3\(3\)jnb6
ciscoios
15.3\(3\)jnc
ciscoios
15.3\(3\)jnc1
ciscoios
15.3\(3\)jnc2
ciscoios
15.3\(3\)jnc3
ciscoios
15.3\(3\)jnc4
ciscoios
15.3\(3\)jnd
ciscoios
15.3\(3\)jnd1
ciscoios
15.3\(3\)jnd2
ciscoios
15.3\(3\)jnd3
ciscoios
15.3\(3\)jnp
ciscoios
15.3\(3\)jnp1
ciscoios
15.3\(3\)jnp3
ciscoios
15.3\(3\)jpb
ciscoios
15.3\(3\)jpb1
ciscoios
15.3\(3\)jpc
ciscoios
15.3\(3\)jpc1
ciscoios
15.3\(3\)jpc2
ciscoios
15.3\(3\)jpc3
ciscoios
15.3\(3\)jpc5
ciscoios
15.3\(3\)jpd
ciscoios_xe
3.3.0xo:xo
ciscoios_xe
3.3.1xo:xo
ciscoios_xe
3.3.2xo:xo
ciscoios_xe
3.6.5be:be
ciscoios_xe
3.7.4e:e
ciscoios_xe
3.7.5e:e
ciscoios_xe
16.9.1
ciscoios_xe
16.9.1d:d
ciscoios_xe
16.10.1
ciscoios_xe
16.10.1e:e
ciscoios_xe
16.11.1
ciscoios_xe
16.11.1a:a
ciscoios_xe
16.11.1c:c
ciscoios_xe
16.11.1s:s
ciscoios_xe
16.11.2
ciscoios_xe
16.12.1
ciscoios_xe
16.12.1c:c
ciscoios_xe
16.12.1s:s
ciscoios_xe
16.12.2
ciscoios_xe
16.12.2s:s
ciscoios_xe
16.12.2t:t
ciscoios_xe
16.12.3
ciscoios_xe
16.12.3s:s
ciscoios_xe
16.12.4
ciscoios_xe
17.1.1
ciscoios_xe
17.1.1s:s
ciscoios_xe
17.1.1t:t
ciscoios_xe
17.1.2
ciscoios_xe
17.2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68