CVE-2021-1419

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations within the SSH management interface. A network administrator user could exploit this vulnerability by accessing an affected device through SSH management to make a configuration change. A successful exploit could allow the attacker to gain privileges equivalent to the root user.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
ciscoCNA
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 9%
VendorProductVersion
ciscoaironet_1542d_firmware
-
ciscoaironet_1562d_firmware
-
ciscoaironet_1815m_firmware
-
ciscoaironet_1830e_firmware
-
ciscoaironet_1840i_firmware
-
ciscoaironet_1850e_firmware
-
ciscoaironet_2800i_firmware
-
ciscoaironet_3800p_firmware
-
ciscoaironet_4800_firmware
-
ciscocatalyst_9105axi_firmware
-
ciscocatalyst_9115axe_firmware
-
ciscocatalyst_9117_firmware
-
ciscocatalyst_9120axi_firmware
-
ciscocatalyst_9124axd_firmware
-
ciscocatalyst_9130axe_firmware
-
ciscocatalyst_iw6300_ac_firmware
-
ciscoesw6300_firmware
-
cisco1100-8p_firmware
-
cisco1120_firmware
-
cisco1160_firmware
-
ciscowireless_lan_controller_software
8.10 ≤
𝑥
< 8.10.151.0
ciscocatalyst_9800_firmware
16.12 ≤
𝑥
< 16.12.6
ciscocatalyst_9800_firmware
17.3 ≤
𝑥
< 17.3.3
ciscocatalyst_9800_firmware
17.4
ciscoaironet_1542i_firmware
-
ciscocatalyst_9800_firmware
16.12 ≤
𝑥
< 16.12.6
ciscocatalyst_9800_firmware
17.3 ≤
𝑥
< 17.3.3
ciscocatalyst_9800_firmware
17.4
ciscocatalyst_9800_firmware
16.12 ≤
𝑥
< 16.12.6
ciscocatalyst_9800_firmware
17.3 ≤
𝑥
< 17.3.3
ciscocatalyst_9800_firmware
17.4
ciscocatalyst_9800_firmware
16.12 ≤
𝑥
< 16.12.6
ciscocatalyst_9800_firmware
17.3 ≤
𝑥
< 17.3.3
ciscocatalyst_9800_firmware
17.4
ciscoaironet_1562e_firmware
-
ciscoaironet_1562i_firmware
-
ciscoaironet_1815w_firmware
-
ciscoaironet_1815t_firmware
-
ciscoaironet_1815i_firmware
-
ciscoaironet_1830i_firmware
-
ciscoaironet_1850i_firmware
-
ciscoaironet_2800e_firmware
-
ciscoaironet_3800i_firmware
-
ciscoaironet_3800e_firmware
-
ciscocatalyst_9105axw_firmware
-
ciscocatalyst_9115axi_firmware
-
ciscocatalyst_9120axp_firmware
-
ciscocatalyst_9120axe_firmware
-
ciscocatalyst_9124axi_firmware
-
ciscocatalyst_9130axi_firmware
-
ciscocatalyst_iw6300_dc_firmware
-
ciscocatalyst_iw6300_dcw_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-ap-LLjsGxv
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-ap-LLjsGxv