CVE-2021-1512

06.05.2021, 13:15

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system of an affected system. This vulnerability is due to insufficient validation of the user-supplied input parameters of a specific CLI command. An attacker could exploit this vulnerability by issuing that command with specific parameters. A successful exploit could allow the attacker to overwrite the content in any arbitrary files that reside on the underlying host file system.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
cisco	CNA	4.4 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 20%

Vendor	Product	Version
cisco	catalyst_sd-wan_manager	19.2 ≤ 𝑥 < 19.2.3
cisco	catalyst_sd-wan_manager	20.3 ≤ 𝑥 < 20.3.1
cisco	catalyst_sd-wan_manager	20.4 ≤ 𝑥 < 20.4.1
cisco	catalyst_sd-wan_manager	20.5 ≤ 𝑥 < 20.5.1
cisco	sd-wan_vbond_orchestrator	-
cisco	sd-wan_vmanage	𝑥 < 18.4.6
cisco	sd-wan_vmanage	20.1 ≤ 𝑥 < 20.1.2
cisco	vsmart_controller_firmware	-
cisco	vedge_100_firmware	-
cisco	vedge_1000_firmware	-
cisco	vedge_100b_firmware	-
cisco	vedge_100m_firmware	-
cisco	vedge_100wm_firmware	-
cisco	vedge_2000_firmware	-
cisco	vedge_5000_firmware	-
cisco	vedge-100b_firmware	-
cisco	vedge_cloud_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-552 - Files or Directories Accessible to External Parties
The product makes files or directories accessible to unauthorized actors, even though they should not be.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-arbfile-7Qhd9mCn