Vulnslist

find the latest Cisco vulnerabilities

Cisco SD-WAN Buffer Overflow Vulnerabilities

cisco-sa-sdwan-bufovulns-B5NrSHbj · Critical · Published · Updated

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-bufovulns-B5NrSHbj

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities.

CVEsCVE-2021-1300, CVE-2021-1301
Cisco Bug IDsCSCvt11525, CSCvi69895
CVSS ScoreBase 9.8
Base 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X
Base 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:X/RL:X/RC:X
Product Names From Source
Cisco Catalyst SD-WAN, Cisco Catalyst SD-WAN Manager, Cisco SD-WAN vEdge Router, Cisco SD-WAN vEdge Cloud, Cisco SD-WAN vContainer

Related Products

Product CVE Evidence
Cisco Catalyst SD-WAN CVE-2021-1300 Cisco OpenVuln
Cisco Catalyst SD-WAN CVE-2021-1301 Cisco OpenVuln
Cisco Catalyst SD-WAN Manager CVE-2021-1300 Cisco OpenVuln
Cisco Catalyst SD-WAN Manager CVE-2021-1301 Cisco OpenVuln
Cisco SD-WAN vContainer CVE-2021-1300 Cisco OpenVuln
Cisco SD-WAN vContainer CVE-2021-1301 Cisco OpenVuln
Cisco SD-WAN vEdge Cloud CVE-2021-1300 Cisco OpenVuln
Cisco SD-WAN vEdge Cloud CVE-2021-1301 Cisco OpenVuln
Cisco SD-WAN vEdge Router CVE-2021-1300 Cisco OpenVuln
Cisco SD-WAN vEdge Router CVE-2021-1301 Cisco OpenVuln
Cisco SD-WAN CVE-2021-1300 Cisco OpenVuln
Cisco SD-WAN CVE-2021-1301 Cisco OpenVuln
Cisco vEdge Routers CVE-2021-1300 Cisco OpenVuln
Cisco vEdge Routers CVE-2021-1301 Cisco OpenVuln
Cisco Catalyst SD-WAN Software CVE-2021-1300 Cisco OpenVuln
Cisco Catalyst SD-WAN Software CVE-2021-1301 Cisco OpenVuln