HIGH✓ PATCH🇬🇧 English

CVE-2021-1419

CVSS 7.8v3.1pub. 2021-09-23upd. 2024-11-21

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations within the SSH management interface. A network administrator user could exploit this vulnerability by accessing an affected device through SSH management to make a configuration change. A successful exploit could allow the attacker to gain privileges equivalent to the root user.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Cisco 1100 8p

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 8p Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco 1120

    HW
    Cisco
    wszystkie wersje
  • Cisco 1120 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco 1160 Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco 1160 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1542d

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1542d Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1542i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1542i Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562d

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562d Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562e Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562i Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815i Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815m

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815m Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815t

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815t Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815w

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815w Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830e Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830i Firmware

    OS
    Cisco
    wszystkie wersje
  • Cisco Aironet 1840i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1840i Firmware

    OS
    Cisco
    wszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2017-12240CRITICAL9.8⚠ KEVten sam produkt

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability tha...

CVE-2022-20695CRITICAL10.0ten sam produkt

A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) Software could allo...

CVE-2021-34727CRITICAL9.8ten sam produkt

A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote ...

CVE-2021-34770CRITICAL10.0ten sam produkt

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisc...

CVE-2020-3258CRITICAL9.8ten sam produkt

Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (I...