CVE-2021-1235Exposure of Sensitive System Information to an Unauthorized Control Sphere in Cisco Sd-wan Vmanage

CWE-497Exposure of Sensitive System Information to an Unauthorized Control SphereCWE-416Use After Free7 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 81.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Sd-wan VmanageCisco Sd-wan Vmanage
Timeline
PublishedJan 20
Latest updateMar 25

Description

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affected system. The vulnerability is due to insufficient user authorization. An attacker could exploit this vulnerability by accessing the vshell of an affected system. A successful exploit could allow the attacker to read database files from the filesystem of the underlying operating system.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDcisco/sd-wan_vmanage< 19.2.3

🔴Vulnerability Details

2
GHSA
GHSA-4h55-m33h-988r: A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affect2022-05-24
CVEList
Cisco SD-WAN vManage Information Disclosure Vulnerability2021-01-20

📋Vendor Advisories

2
Red Hat
kernel: drm/amdgpu: Fix a use-after-free2024-03-25
Cisco
Cisco SD-WAN vManage Information Disclosure Vulnerability2021-01-20

🕵️Threat Intelligence

2
Talos
Vulnerability Spotlight: Heap-based buffer overflow in Google Chrome could lead to code execution2021-05-20
Talos
Vulnerability Spotlight: Heap-based buffer overflow in Google Chrome could lead to code execution2021-05-20
CVE-2021-1235 — Cisco Sd-wan Vmanage vulnerability | cvebase