CVE-2021-1301
Description
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.876
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Cisco SD-WAN Buffer Overflow Vulnerabilities For Cisco SD-WAN | NCM |
| Cisco SD-WAN Buffer Overflow Vulnerabilities For Cisco vEdge Router | NCM |
| Improper Input Validation Vulnerability (CVE-2021-1301) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1705297 | Security Update for Cisco SD-WAN sdwan-20.4(0.55) |
| PATCH-1705270 | Security Update for Cisco vEdge Router sdwan-19.2.2 |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234