Vulnslist

find the latest Cisco vulnerabilities

Cisco Small Business 220 Series Smart Switches Link Layer Discovery Protocol Vulnerabilities

cisco-sa-sb220-lldp-multivuls-mVRUtQ8T · High · Published · Updated

Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business 220 Series Smart Switches. An unauthenticated, adjacent attacker could perform the following: Execute code on the affected device or cause it to reload unexpectedly Cause LLDP database corruption on the affected device For more information about these vulnerabilities, see the Details section of this advisory. Note: LLDP is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent). Cisco has released firmware updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb220-lldp-multivuls-mVRUtQ8T

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities. However, administrators may disable the affected feature.

To disable LLDP on the LAN interface of a device, do the following:

Open the web-based management interface and choose Administration > Discovery LLDP > Properties.
Uncheck the LLDP Status check box.

While this mitigation has been deployed and was proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.

CVEsCVE-2021-34775, CVE-2021-34776, CVE-2021-34777, CVE-2021-34778, CVE-2021-34779, CVE-2021-34780
Cisco Bug IDsCSCvz29121, CSCwa32673, CSCvz29126, CSCwa32708, CSCvz29134, CSCwa32782, CSCvz29120, CSCwa32793, CSCvz29116, CSCwa32762, CSCvz29108, CSCwa32785
CVSS ScoreBase 8.8
Base 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Base 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco Small Business 200 Series Smart Switches, Cisco Small Business 220 Series Smart Plus Switches, Cisco Small Business Smart and Managed Switches

CSAF Product Statuses

Product Status Source CVE Rows
Cisco Small Business 200 Series Smart Switches known_affected cisco_csaf CVE-2021-34778, CVE-2021-34779, CVE-2021-34780 3
Cisco Small Business 220 Series Smart Plus Switches known_affected cisco_csaf CVE-2021-34775, CVE-2021-34776, CVE-2021-34777 3
Cisco Small Business Smart and Managed Switches known_affected cisco_csaf CVE-2021-34775, CVE-2021-34776, CVE-2021-34777 +3 more 6

Related Products

Product CVE Evidence
Cisco Small Business 200 Series Smart Switches CVE-2021-34777 Cisco OpenVuln · family-level
Cisco Small Business 200 Series Smart Switches CVE-2021-34778 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Plus Switches CVE-2021-34777 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Plus Switches CVE-2021-34778 Cisco OpenVuln · family-level
Cisco Small Business Smart and Managed Switches CVE-2021-34777 Cisco OpenVuln
Cisco Small Business Smart and Managed Switches CVE-2021-34778 Cisco OpenVuln
Cisco Business 220 Series Switches CVE-2021-34777 Cisco OpenVuln
Cisco Business 220 Series Switches CVE-2021-34778 Cisco OpenVuln
200 Series Smart Switches CVE-2021-34777 Cisco OpenVuln · family-level
200 Series Smart Switches CVE-2021-34778 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Switches CVE-2021-34777 Cisco OpenVuln
Cisco Small Business 220 Series Smart Switches CVE-2021-34778 Cisco OpenVuln
Cisco Small Business 200 Series Smart Switches CVE-2021-34780 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Plus Switches CVE-2021-34780 Cisco OpenVuln · family-level
Cisco Small Business Smart and Managed Switches CVE-2021-34780 Cisco OpenVuln
Cisco Business 220 Series Switches CVE-2021-34780 Cisco OpenVuln
200 Series Smart Switches CVE-2021-34780 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Switches CVE-2021-34780 Cisco OpenVuln
Cisco Small Business 200 Series Smart Switches CVE-2021-34775 Cisco OpenVuln · family-level
Cisco Small Business 200 Series Smart Switches CVE-2021-34776 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Plus Switches CVE-2021-34775 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Plus Switches CVE-2021-34776 Cisco OpenVuln · family-level
Cisco Small Business Smart and Managed Switches CVE-2021-34775 Cisco OpenVuln
Cisco Small Business Smart and Managed Switches CVE-2021-34776 Cisco OpenVuln
Cisco Business 220 Series Switches CVE-2021-34775 Cisco OpenVuln
Cisco Business 220 Series Switches CVE-2021-34776 Cisco OpenVuln
200 Series Smart Switches CVE-2021-34775 Cisco OpenVuln · family-level
200 Series Smart Switches CVE-2021-34776 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Switches CVE-2021-34775 Cisco OpenVuln
Cisco Small Business 220 Series Smart Switches CVE-2021-34776 Cisco OpenVuln
Cisco Small Business 200 Series Smart Switches CVE-2021-34779 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Plus Switches CVE-2021-34779 Cisco OpenVuln · family-level
Cisco Small Business Smart and Managed Switches CVE-2021-34779 Cisco OpenVuln
Cisco Business 220 Series Switches CVE-2021-34779 Cisco OpenVuln
200 Series Smart Switches CVE-2021-34779 Cisco OpenVuln · family-level
Cisco Small Business 220 Series Smart Switches CVE-2021-34779 Cisco OpenVuln