CVE-2021-1531 — Vulnetix

CVE-2021-1531 PUBLISHED CVSS 8.800000190734863 HIGH

De multiples vulnérabilités ont été découvertes dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service et une atteinte à l'intégrité des données.

EPSS 12.48% · 94.1th percentile

Risk Scores

CVSS 3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

12.48%

94.1th percentile

Affected Products

Vendor	Product	Versions
Cisco	N/A
Cisco	Cisco Modeling Labs	n/a
cisco	modeling_labs	2.0.1, 2.1.0, 2.1.1

Exploit Intelligence

http://packetstormsecurity.com/files/163265/Cisco-Modeling-Labs-2.1.1-b19-Remote-Command-Execution.html (nist-nvd)
20210519 Cisco Modeling Labs Web UI Command Injection Vulnerability (circl)
Cisco Modeling Labs 2.1.1-b19 Remote Command Execution Exploit (0day-today)
Cisco Modeling Labs 2.1.1-b19 Remote Command Execution Exploit (0day-today)

Timeline

May 20, 2021 CVE Published
May 22, 2021 EPSS Score
Jun 23, 2021 PoC Published
Sep 24, 2021 EPSS Score
Nov 24, 2021 EPSS Score
Jan 25, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 27, 2022 EPSS Score
Sep 28, 2022 EPSS Score
Nov 29, 2022 EPSS Score
Mar 7, 2023 EPSS Score

References

20210519 Cisco Modeling Labs Web UI Command Injection Vulnerability vendor-advisory
http://packetstormsecurity.com/files/163265/Cisco-Modeling-Labs-2.1.1-b19-Remote-Command-Execution.html url
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-cmd-inj-YU5e6tB3 advisory
https://nvd.nist.gov/vuln/detail/CVE-2021-1531 advisory

Open in Interactive Console →