CVE-2021-1589 — Plaintext Storage of a Password in Cisco Sd-wan

CWE-256 — Plaintext Storage of a Password CWE-522 — Insufficiently Protected Credentials4 documents4 sources

Severity

6.5MEDIUMNVD

EPSS

0.2%

top 52.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Sd-wan Cisco Sd-wan Vmanage

Timeline

PublishedSep 23

Latest updateMay 24

Description

A vulnerability in the disaster recovery feature of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain unauthorized access to user credentials. This vulnerability exists because access to API endpoints is not properly restricted. An attacker could exploit this vulnerability by sending a request to an API endpoint. A successful exploit could allow the attacker to gain unauthorized access to administrative credentials that could be used in further attacks.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5cisco/cisco_sd-wan_vmanagen/a

▶NVDcisco/sd-wan20.3 — 20.3.4+3

Patches

Patch: tools.cisco.com ↗Patch: tools.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-6fff-rx48-97mq: A vulnerability in the disaster recovery feature of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain unauthorized a↗2022-05-24

▶

CVEList

Cisco SD-WAN vManage Software Disaster Recovery Feature Password Exposure Vulnerability↗2021-09-23

▶

📋Vendor Advisories

Cisco

Cisco SD-WAN vManage Software Disaster Recovery Feature Password Exposure Vulnerability↗2021-09-22

▶