Vulnslist

find the latest Cisco vulnerabilities

Cisco SD-WAN vEdge Software Buffer Overflow Vulnerabilities

cisco-sa-sdwan-buffover-MWGucjtO · High · Published · Updated

Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an attacker to execute arbitrary code as the root user or cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-buffover-MWGucjtO

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities.

CVEsCVE-2021-1509, CVE-2021-1510, CVE-2021-1511
Cisco Bug IDsCSCvu28407, CSCvu28442, CSCvt11545
CVSS ScoreBase 6.5
Base 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:X/RL:X/RC:X
Base 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:X/RL:X/RC:X
Base 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Product Names From Source
Cisco SD-WAN vEdge Router, Cisco SD-WAN vEdge Cloud

CSAF Product Statuses

Product Status Source CVE Rows
Cisco SD-WAN vEdge Cloud known_affected cisco_csaf CVE-2021-1509, CVE-2021-1510, CVE-2021-1511 3
Cisco SD-WAN vEdge Router known_affected cisco_csaf CVE-2021-1509, CVE-2021-1510, CVE-2021-1511 3

Related Products

Product CVE Evidence
Cisco SD-WAN vEdge Cloud CVE-2021-1509 Cisco OpenVuln
Cisco SD-WAN vEdge Cloud CVE-2021-1510 Cisco OpenVuln
Cisco SD-WAN vEdge Cloud CVE-2021-1511 Cisco OpenVuln
Cisco SD-WAN vEdge Router CVE-2021-1509 Cisco OpenVuln
Cisco SD-WAN vEdge Router CVE-2021-1510 Cisco OpenVuln
Cisco SD-WAN vEdge Router CVE-2021-1511 Cisco OpenVuln
Cisco SD-WAN CVE-2021-1509 Cisco OpenVuln
Cisco SD-WAN CVE-2021-1510 Cisco OpenVuln
Cisco SD-WAN CVE-2021-1511 Cisco OpenVuln
Cisco vEdge Routers CVE-2021-1509 Cisco OpenVuln
Cisco vEdge Routers CVE-2021-1510 Cisco OpenVuln
Cisco vEdge Routers CVE-2021-1511 Cisco OpenVuln
Cisco Catalyst SD-WAN Software CVE-2021-1509 Cisco OpenVuln
Cisco Catalyst SD-WAN Software CVE-2021-1510 Cisco OpenVuln
Cisco Catalyst SD-WAN Software CVE-2021-1511 Cisco OpenVuln