CVE-2021-1540

Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote attacker to bypass authorization and execute a subset of CLI commands on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Severity	HIGH
CVSS	8.1
EPSS	0.26% EPSS low
CWE	CWE-863
KEV
Published	4 years ago
Modified	1 year ago

Public Affected Products

Product	Advisory	Evidence
Cisco ASR 5000 Series Software	cisco-sa-asr5k-autho-bypass-mJDF5S7n	Cisco CSAF · structured affected