cisco-sa-sdwan-cmdinjm-9QMSmgcn

Cisco SD-WAN Command Injection Vulnerabilities

cisco-sa-sdwan-cmdinjm-9QMSmgcn · Critical · Published 5 years ago · Updated 5 years ago

Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to perform command injection attacks against an affected device, which could allow the attacker to take certain actions with root privileges on the device. For more information about these vulnerabilities, see the Details section of this advisory. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-cmdinjm-9QMSmgcn

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities.

CVEs	CVE-2021-1260, CVE-2021-1261, CVE-2021-1262, CVE-2021-1263, CVE-2021-1298, CVE-2021-1299
Cisco Bug IDs	CSCvu28443, CSCvi59635, CSCvm26011, CSCvi69982, CSCvi59639, CSCvu28387
CVSS Score	Base 6.1 Base 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N/E:X/RL:X/RC:X Base 8.1 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:X/RL:X/RC:X Base 5.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N/E:X/RL:X/RC:X Base 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:X/RL:X/RC:X Base 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:X/RL:X/RC:X Base 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:X/RL:X/RC:X
Product Names From Source	Cisco Catalyst SD-WAN, Cisco Catalyst SD-WAN Manager, Cisco SD-WAN vEdge Router, Cisco SD-WAN vEdge Cloud, Cisco SD-WAN vContainer

CSAF Product Statuses

Product	Status	Source	CVE	Rows
Cisco Catalyst SD-WAN	known_affected	cisco_csaf	CVE-2021-1260, CVE-2021-1261, CVE-2021-1262 +2 more	5
Cisco Catalyst SD-WAN Manager	known_affected	cisco_csaf	CVE-2021-1260, CVE-2021-1261, CVE-2021-1262 +3 more	6
Cisco SD-WAN vContainer	known_affected	cisco_csaf	CVE-2021-1260, CVE-2021-1261, CVE-2021-1262 +2 more	5
Cisco SD-WAN vEdge Cloud	known_affected	cisco_csaf	CVE-2021-1260, CVE-2021-1261, CVE-2021-1262 +2 more	5
Cisco SD-WAN vEdge Router	known_affected	cisco_csaf	CVE-2021-1260, CVE-2021-1261, CVE-2021-1262 +2 more	5

Related Products

Product	CVE	Evidence
Cisco Catalyst SD-WAN	CVE-2021-1260	Cisco OpenVuln
Cisco Catalyst SD-WAN	CVE-2021-1261	Cisco OpenVuln
Cisco Catalyst SD-WAN	CVE-2021-1263	Cisco OpenVuln
Cisco Catalyst SD-WAN Manager	CVE-2021-1260	Cisco OpenVuln
Cisco Catalyst SD-WAN Manager	CVE-2021-1261	Cisco OpenVuln
Cisco Catalyst SD-WAN Manager	CVE-2021-1263	Cisco OpenVuln
Cisco SD-WAN vContainer	CVE-2021-1260	Cisco OpenVuln
Cisco SD-WAN vContainer	CVE-2021-1261	Cisco OpenVuln
Cisco SD-WAN vContainer	CVE-2021-1263	Cisco OpenVuln
Cisco SD-WAN vEdge Cloud	CVE-2021-1260	Cisco OpenVuln
Cisco SD-WAN vEdge Cloud	CVE-2021-1261	Cisco OpenVuln
Cisco SD-WAN vEdge Cloud	CVE-2021-1263	Cisco OpenVuln
Cisco SD-WAN vEdge Router	CVE-2021-1260	Cisco OpenVuln
Cisco SD-WAN vEdge Router	CVE-2021-1261	Cisco OpenVuln
Cisco SD-WAN vEdge Router	CVE-2021-1263	Cisco OpenVuln
Cisco SD-WAN	CVE-2021-1260	Cisco OpenVuln
Cisco SD-WAN	CVE-2021-1261	Cisco OpenVuln
Cisco SD-WAN	CVE-2021-1263	Cisco OpenVuln
Cisco vEdge Routers	CVE-2021-1260	Cisco OpenVuln
Cisco vEdge Routers	CVE-2021-1261	Cisco OpenVuln
Cisco vEdge Routers	CVE-2021-1263	Cisco OpenVuln
Cisco Catalyst SD-WAN Software	CVE-2021-1260	Cisco OpenVuln
Cisco Catalyst SD-WAN Software	CVE-2021-1261	Cisco OpenVuln
Cisco Catalyst SD-WAN Software	CVE-2021-1263	Cisco OpenVuln
Cisco Catalyst SD-WAN	CVE-2021-1298	Cisco OpenVuln
Cisco Catalyst SD-WAN	CVE-2021-1299	Cisco OpenVuln
Cisco Catalyst SD-WAN Manager	CVE-2021-1298	Cisco OpenVuln
Cisco Catalyst SD-WAN Manager	CVE-2021-1299	Cisco OpenVuln
Cisco SD-WAN vContainer	CVE-2021-1298	Cisco OpenVuln
Cisco SD-WAN vContainer	CVE-2021-1299	Cisco OpenVuln
Cisco SD-WAN vEdge Cloud	CVE-2021-1298	Cisco OpenVuln
Cisco SD-WAN vEdge Cloud	CVE-2021-1299	Cisco OpenVuln
Cisco SD-WAN vEdge Router	CVE-2021-1298	Cisco OpenVuln
Cisco SD-WAN vEdge Router	CVE-2021-1299	Cisco OpenVuln
Cisco SD-WAN	CVE-2021-1298	Cisco OpenVuln
Cisco SD-WAN	CVE-2021-1299	Cisco OpenVuln
Cisco vEdge Routers	CVE-2021-1298	Cisco OpenVuln
Cisco vEdge Routers	CVE-2021-1299	Cisco OpenVuln
Cisco Catalyst SD-WAN Software	CVE-2021-1298	Cisco OpenVuln
Cisco Catalyst SD-WAN Software	CVE-2021-1299	Cisco OpenVuln
Cisco Catalyst SD-WAN	CVE-2021-1262	Cisco OpenVuln
Cisco Catalyst SD-WAN Manager	CVE-2021-1262	Cisco OpenVuln
Cisco SD-WAN vContainer	CVE-2021-1262	Cisco OpenVuln
Cisco SD-WAN vEdge Cloud	CVE-2021-1262	Cisco OpenVuln
Cisco SD-WAN vEdge Router	CVE-2021-1262	Cisco OpenVuln
Cisco SD-WAN	CVE-2021-1262	Cisco OpenVuln
Cisco vEdge Routers	CVE-2021-1262	Cisco OpenVuln
Cisco Catalyst SD-WAN Software	CVE-2021-1262	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Cisco SD-WAN Command Injection Vulnerabilities

Workarounds

CSAF Product Statuses

Related Products