VDB
CVE-2021-1619
CVE-2021-1619
PUBLISHED
CVSS 9.800000190734863 CRITICAL
A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass NETCONF or RESTCONF authentication and do either of the following: Install, manipulate, or delete the configuration of an affected device Cause memory corruption that results in a denial of service (DoS) on an affected device This vulnerability is due to an uninitialized variable. An attacker could exploit this vulnerability by sending a series of NETCONF or RESTCONF requests to an affected device. A successful exploit could allow the attacker to use NETCONF or RESTCONF to install, manipulate, or delete the configuration of a network device or to corrupt memory on the device, resulting a DoS.
EPSS 0.87% · 75.6th percentile
Risk Scores
CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.87%
75.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | ios_xe_sd-wan_16.12.1c_when_installed_on_1000_series_integrated_services | routers |
| cisco | ios_xe_sd-wan_16.11.1s_when_installed_on_1000_series_integrated_services | routers |
| cisco | ios_xe_sd-wan_16.12.1a_when_installed_on_1100_series_industrial_integrated_services | routers |
| cisco | ios_xe_sd-wan_16.12.1b_when_installed_on_4000_series_integrated_services | * |
| cisco | ios_xe_sd-wan_16.11.1s_when_installed_on_cloud_services_router_1000v | series |
| cisco | ios_xe_sd-wan_16.10.3a_when_installed_on_asr_1000_series_aggregation_services | routers |
| cisco | ios_xe_sd-wan_16.12.4a_when_installed_on_cloud_services_router_1000v | series |
| cisco | ios_xe_sd-wan_16.10.3b_when_installed_on_integrated_services_virtual | router |
| cisco | ios_xe_sd-wan_16.12.2r_when_installed_on_asr_1000_series_aggregation_services | routers |
| cisco | ios_xe_sd-wan_16.12.3_when_installed_on_1100_series_industrial_integrated_services | routers |
| cisco | ios_xe_sd-wan_16.10.3b_when_installed_on_asr_1000_series_aggregation_services | routers |
| cisco | ios_xe_sd-wan_16.12.1c_when_installed_on_4000_series_integrated_services | routers |
| cisco | ios_xe_sd-wan_16.10.4_when_installed_on_asr_1000_series_aggregation_services | routers |
| cisco | ios_xe_sd-wan_16.11.1_when_installed_on_asr_1000_series_aggregation_services | * |
| cisco | ios_xe_sd-wan_16.12.5_when_installed_on_integrated_services_virtual | router |
| cisco | ios_xe_sd-wan_16.12.4a_when_installed_on_integrated_services_virtual | * |
| cisco | ios_xe_sd-wan_16.10.3_when_installed_on_1000_series_integrated_services | routers |
| cisco | ios_xe_sd-wan_16.10.6_when_installed_on_asr_1000_series_aggregation_services | routers |
| cisco | ios_xe_sd-wan_16.12.2r_when_installed_on_1100_series_industrial_integrated_services | routers |
| cisco | ios_xe_sd-wan_16.12.5_when_installed_on_4000_series_integrated_services | routers |
…and 127 more
Exploit Intelligence
Timeline
- Sep 23, 2021 CVE Published
- Sep 23, 2021 EPSS Score
- Nov 19, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 14, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 10, 2022 EPSS Score
- Sep 2, 2022 EPSS Score
- Oct 29, 2022 EPSS Score
- Dec 26, 2022 EPSS Score
- Feb 21, 2023 EPSS Score
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cbr8-cops-Vc2ZsJSx advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aaa-Yx47ZT8Q advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxesdwan-rbuffover-vE2OB6tp advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-gre-6u4ELzAT advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fxo-pattern-bypass-jUXgygYv advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-quewedge-69BsHUBW advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ratenat-pYVLA7wM advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ikev2-ebFrwMPr advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-rce-LYgj8Kf advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-airo-wpa-pktleak-dos-uSTyGrL advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-ewc-dos-g6JruHRT advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cbr8snmp-zGjkZ9Fc advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-dos-gmNjdKOY advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-ap-LLjsGxv advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-trustsec-dos-7fuXDR2 advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-ipv6-dos-NMYeCnZv advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-1619 advisory