Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2021-1419

Published: 23/09/2021 Updated: 07/11/2023
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations within the SSH management interface. A network administrator user could exploit this vulnerability by accessing an affected device through SSH management to make a configuration change. A successful exploit could allow the malicious user to gain privileges equivalent to the root user.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco aironet 1542d firmware -

cisco aironet 1562d firmware -

cisco aironet 1815m firmware -

cisco aironet 1830e firmware -

cisco aironet 1840i firmware -

cisco aironet 1850e firmware -

cisco aironet 2800i firmware -

cisco aironet 3800p firmware -

cisco aironet 4800 firmware -

cisco catalyst 9105axi firmware -

cisco catalyst 9115axe firmware -

cisco catalyst 9117 firmware -

cisco catalyst 9120axi firmware -

cisco catalyst 9124axd firmware -

cisco catalyst 9130axe firmware -

cisco catalyst iw6300 ac firmware -

cisco esw6300 firmware -

cisco 1100-8p firmware -

cisco 1120 firmware -

cisco 1160 firmware -

cisco wireless lan controller software

cisco catalyst 9800 firmware

cisco catalyst 9800 firmware 17.4

cisco aironet 1542i firmware -

cisco aironet 1562e firmware -

cisco aironet 1562i firmware -

cisco aironet 1815w firmware -

cisco aironet 1815t firmware -

cisco aironet 1815i firmware -

cisco aironet 1830i firmware -

cisco aironet 1850i firmware -

cisco aironet 2800e firmware -

cisco aironet 3800i firmware -

cisco aironet 3800e firmware -

cisco catalyst 9105axw firmware -

cisco catalyst 9115axi firmware -

cisco catalyst 9120axp firmware -

cisco catalyst 9120axe firmware -

cisco catalyst 9124axi firmware -

cisco catalyst 9130axi firmware -

cisco catalyst iw6300 dc firmware -

cisco catalyst iw6300 dcw firmware -

Vendor Advisories

Cisco: Cisco Access Points SSH Management Privilege Escalation Vulnerability
A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges The vulnerability is due to improper checking on file operations within the SSH management interface A network administrator user could ...

References

NVD-CWE-Otherhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-ap-LLjsGxvhttps://nvd.nist.govhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-ap-LLjsGxv
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusionIMAPCVE-2024-36103CVE-2024-28995CVE-2024-37325CVE-2024-30078CVE-2024-30082SQL injectionCVE-2024-30052
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook