Home

CVE-2021-1480

Description

Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or allow an authenticated, local attacker to gain escalated privileges on an affected system. For more information about these vulnerabilities, see the Details section of this advisory.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
5.283

Associated Vulnerability

VulnerabilityOS Platform
Cisco SD-WAN vManage Software Vulnerabilities For Cisco SD-WANNCM
Cisco SD-WAN vManage Software Vulnerabilities For Cisco Cloud Services Router 1000V SeriesNCM
Improper Input Validation Vulnerability (CVE-2021-1480)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1705297Security Update for Cisco SD-WAN sdwan-20.4(0.55)
PATCH-1705899Security Update for Cisco Cloud Services Router 1000V Series Denali-16.3.4a

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234