7.8
CVSSv3

CVE-2021-1419

Published: 23/09/2021 Updated: 07/11/2023
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations within the SSH management interface. A network administrator user could exploit this vulnerability by accessing an affected device through SSH management to make a configuration change. A successful exploit could allow the malicious user to gain privileges equivalent to the root user.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco aironet 1542d firmware -

cisco aironet 1562d firmware -

cisco aironet 1815m firmware -

cisco aironet 1830e firmware -

cisco aironet 1840i firmware -

cisco aironet 1850e firmware -

cisco aironet 2800i firmware -

cisco aironet 3800p firmware -

cisco aironet 4800 firmware -

cisco catalyst 9105axi firmware -

cisco catalyst 9115axe firmware -

cisco catalyst 9117 firmware -

cisco catalyst 9120axi firmware -

cisco catalyst 9124axd firmware -

cisco catalyst 9130axe firmware -

cisco catalyst iw6300 ac firmware -

cisco esw6300 firmware -

cisco 1100-8p firmware -

cisco 1120 firmware -

cisco 1160 firmware -

cisco wireless lan controller software

cisco catalyst 9800 firmware

cisco catalyst 9800 firmware 17.4

cisco aironet 1542i firmware -

cisco aironet 1562e firmware -

cisco aironet 1562i firmware -

cisco aironet 1815w firmware -

cisco aironet 1815t firmware -

cisco aironet 1815i firmware -

cisco aironet 1830i firmware -

cisco aironet 1850i firmware -

cisco aironet 2800e firmware -

cisco aironet 3800i firmware -

cisco aironet 3800e firmware -

cisco catalyst 9105axw firmware -

cisco catalyst 9115axi firmware -

cisco catalyst 9120axp firmware -

cisco catalyst 9120axe firmware -

cisco catalyst 9124axi firmware -

cisco catalyst 9130axi firmware -

cisco catalyst iw6300 dc firmware -

cisco catalyst iw6300 dcw firmware -

Vendor Advisories

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges The vulnerability is due to improper checking on file operations within the SSH management interface A network administrator user could ...