CVE-2021-1274

CWE-119Buffer OverflowCWE-476NULL Pointer DereferenceCWE-20Improper Input ValidationCWE-787Out-of-bounds Write4 documents4 sources
Severity
8.6HIGH
EPSS
0.7%
top 28.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Cisco Sd-wan SolutionCisco Sd-wan Firmware
Timeline
PublishedJan 20
Latest updateMay 24

Description

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

NVDcisco/sd-wan_firmware10 versions+9

🔴Vulnerability Details

2
GHSA
GHSA-pch2-664m-xccv: Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against a2022-05-24
CVEList
Cisco SD-WAN Denial of Service Vulnerabilities2021-01-20

📋Vendor Advisories

1
Cisco
Cisco SD-WAN Denial of Service Vulnerabilities2021-01-20
CVE-2021-1274 (HIGH CVSS 8.6) | Multiple vulnerabilities in Cisco S | cvebase.io