VDB
CVE-2021-1185
CVE-2021-1185
PUBLISHED
CVSS 7.199999809265137 HIGH
De multiples vulnérabilités ont été découvertes dans les produits Cisco. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et une élévation de privilèges.
EPSS 0.44% · 63.3th percentile
Risk Scores
CVSS 3.1
7.199999809265137
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.44%
63.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | N/A | |
| cisco | application_extension_platform | 1.0.3.55 |
| Cisco | Small Business | |
| Cisco | Cisco Small Business RV Series Router Firmware | * |
| cisco | rv110w_firmware | 1.2.2.8, 1.3.1.7 |
| cisco | rv130_vpn_router_firmware | 1.3.1.7, 1.2.2.8 |
| cisco | rv130w_firmware | 1.2.2.8, 1.3.1.7 |
| cisco | rv215w_wireless-n_vpn_router_firmware | 1.3.1.7, 1.2.2.8 |
Exploit Intelligence
Timeline
- Jan 13, 2021 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-command-inject-LBdQ2KRN advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-overflow-WUnUgv4U advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmxpe-75Asy9k advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-dll-injec-pQnryXLf advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-1185 advisory