Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2021-1304 | First vendor Publication | 2021-01-20 |
| Vendor | Cve | Last vendor Modification | 2023-11-07 |
Security-Database Scoring CVSS v3
| Cvss vector : CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N | |||
|---|---|---|---|
| Overall CVSS Score | 6.5 | ||
| Base Score | 6.5 | Environmental Score | 6.5 |
| impact SubScore | 3.6 | Temporal Score | 6.5 |
| Exploitabality Sub Score | 2.8 | ||
| Attack Vector | Network | Attack Complexity | Low |
| Privileges Required | Low | User Interaction | None |
| Scope | Unchanged | Confidentiality Impact | High |
| Integrity Impact | None | Availability Impact | None |
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:S/C:P/I:N/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 4 | Attack Range | Network |
| Cvss Impact Score | 2.9 | Attack Complexity | Low |
| Cvss Expoit Score | 8 | Authentication | Requires single instance |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization and modify the configuration of an affected system, gain access to sensitive information, and view information that they are not authorized to access. For more information about these vulnerabilities, see the Details section of this advisory. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-1304 |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 1 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2021-01-28 | Cisco SD-WAN vManage configuration request detected RuleID : 56962 - Revision : 1 - Type : POLICY-OTHER |
| 2021-01-28 | Cisco SD-WAN vManage enumeration request detected RuleID : 56961 - Revision : 1 - Type : POLICY-OTHER |
| 2021-01-28 | Cisco SD-WAN vManage enumeration request detected RuleID : 56960 - Revision : 1 - Type : POLICY-OTHER |
| 2021-01-28 | Cisco SD-WAN vManage enumeration request detected RuleID : 56959 - Revision : 1 - Type : POLICY-OTHER |
| 2021-01-28 | Cisco SD-WAN vManage terminal request detected RuleID : 56958 - Revision : 1 - Type : POLICY-OTHER |
Sources (Detail)
| Source | Url |
|---|---|
| CISCO | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-s... |
Alert History
| Date | Informations |
|---|---|
| 2023-11-07 21:36:00 |
|
| 2023-10-06 21:27:58 |
|
| 2023-09-29 21:27:44 |
|
| 2021-05-04 14:07:05 |
|
| 2021-04-22 03:11:38 |
|
| 2021-01-29 21:23:33 |
|
| 2021-01-28 21:23:16 |
|
| 2021-01-26 21:23:44 |
|
| 2021-01-21 00:22:54 |
|
