Details of VAR-202101-0784

ID

VAR-202101-0784

CVE

CVE-2021-1226

TITLE

plural Cisco Product leak information leak from log file

Trust: 0.8

sources: JVNDB: JVNDB-2021-002552

DESCRIPTION

A vulnerability in the audit logging component of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition, Cisco Unified Communications Manager IM & Presence Service, Cisco Unity Connection, Cisco Emergency Responder, and Cisco Prime License Manager could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. The vulnerability is due to the storage of certain unencrypted credentials. An attacker could exploit this vulnerability by accessing the audit logs on an affected system and obtaining credentials that they may not normally have access to. A successful exploit could allow the attacker to use those credentials to discover and manage network devices. plural Cisco The product contains a vulnerability related to information leakage from log files.Information may be obtained. Cisco Unity Connection (UC) and others are products of Cisco (Cisco). Cisco Unity Connection is a voice message platform. Unified Communications Manager Session Management Edition (CM SME) is the session management version of Unified Communications Manager

Trust: 1.8

sources: NVD: CVE-2021-1226 // JVNDB: JVNDB-2021-002552 // VULHUB: VHN-374280 // VULMON: CVE-2021-1226

AFFECTED PRODUCTS

vendor:	cisco	model:	unity connection	scope:	gte	version:	11.5\(1\)	Trust: 1.0
vendor:	cisco	model:	unity connection	scope:	lt	version:	11.5\(1\)su9	Trust: 1.0
vendor:	cisco	model:	emergency responder	scope:	eq	version:	12.0\(1\)	Trust: 1.0
vendor:	cisco	model:	unity connection	scope:	lt	version:	12.0\(1\)su4	Trust: 1.0
vendor:	cisco	model:	emergency responder	scope:	lt	version:	12.5\(1\)su3	Trust: 1.0
vendor:	cisco	model:	unified communications manager im \& presence service	scope:	gte	version:	11.5\(1\)	Trust: 1.0
vendor:	cisco	model:	prime license manager	scope:	lt	version:	11.5\(1\)su9	Trust: 1.0
vendor:	cisco	model:	unity connection	scope:	eq	version:	10.5\(2\)	Trust: 1.0
vendor:	cisco	model:	emergency responder	scope:	gte	version:	12.5\(1\)	Trust: 1.0
vendor:	cisco	model:	unity connection	scope:	lt	version:	12.5\(1\)su3	Trust: 1.0
vendor:	cisco	model:	emergency responder	scope:	eq	version:	11.5\(1\)	Trust: 1.0
vendor:	cisco	model:	unified communications manager im \& presence service	scope:	lt	version:	11.5\(1\)su9	Trust: 1.0
vendor:	cisco	model:	unified communications manager im \& presence service	scope:	eq	version:	10.5\(2\)	Trust: 1.0
vendor:	cisco	model:	unified communications manager	scope:	gte	version:	11.5\(1\)	Trust: 1.0
vendor:	cisco	model:	unity connection	scope:	gte	version:	12.0\(1\)	Trust: 1.0
vendor:	cisco	model:	prime license manager	scope:	gte	version:	11.5\(1\)	Trust: 1.0
vendor:	cisco	model:	prime license manager	scope:	eq	version:	10.5\(2\)	Trust: 1.0
vendor:	cisco	model:	unity connection	scope:	gte	version:	12.5\(1\)	Trust: 1.0
vendor:	cisco	model:	emergency responder	scope:	eq	version:	10.5\(2\)	Trust: 1.0
vendor:	cisco	model:	unified communications manager im \& presence service	scope:	gte	version:	12.5\(1\)	Trust: 1.0
vendor:	cisco	model:	unified communications manager	scope:	lt	version:	11.5\(1\)su9	Trust: 1.0
vendor:	cisco	model:	unified communications manager	scope:	eq	version:	10.5\(2\)	Trust: 1.0
vendor:	cisco	model:	unified communications manager im \& presence service	scope:	eq	version:	12.0\(1\)	Trust: 1.0
vendor:	cisco	model:	unified communications manager im \& presence service	scope:	lt	version:	12.5\(1\)su3	Trust: 1.0
vendor:	シスコシステムズ	model:	cisco prime license manager	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco unified communications manager im and presence service	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco unified communications manager	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco unity connection	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco emergency responder ソフトウェア	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2021-002552 // NVD: CVE-2021-1226

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2021-1226
value:	MEDIUM
Trust: 1.0
ykramarz@cisco.com:	CVE-2021-1226
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2021-1226
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-202101-968
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-374280
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2021-1226
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2021-1226
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-374280
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2021-1226
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	2.8
impactScore:	3.6
version:	3.1
Trust: 1.0
ykramarz@cisco.com:	CVE-2021-1226
baseSeverity:	MEDIUM
baseScore:	4.3
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	2.8
impactScore:	1.4
version:	3.1
Trust: 1.0
NVD:	CVE-2021-1226
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-374280 // VULMON: CVE-2021-1226 // JVNDB: JVNDB-2021-002552 // CNNVD: CNNVD-202101-968 // NVD: CVE-2021-1226 // NVD: CVE-2021-1226

PROBLEMTYPE DATA

problemtype:	CWE-532	Trust: 1.1
problemtype:	Information leakage from log files (CWE-532) [NVD Evaluation ]	Trust: 0.8

sources: VULHUB: VHN-374280 // JVNDB: JVNDB-2021-002552 // NVD: CVE-2021-1226

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202101-968

TYPE

log information leak

Trust: 0.6

sources: CNNVD: CNNVD-202101-968

PATCH

title:	cisco-sa-cucm-logging-6QSWKRYz	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-logging-6QSWKRYz	Trust: 0.8
title:	Cisco: Cisco Unified Communications Products Information Disclosure Vulnerability	url:	https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-cucm-logging-6QSWKRYz	Trust: 0.1

sources: VULMON: CVE-2021-1226 // JVNDB: JVNDB-2021-002552

EXTERNAL IDS

db:	NVD	id:	CVE-2021-1226	Trust: 2.6
db:	JVNDB	id:	JVNDB-2021-002552	Trust: 0.8
db:	AUSCERT	id:	ESB-2021.0152	Trust: 0.6
db:	CNNVD	id:	CNNVD-202101-968	Trust: 0.6
db:	VULHUB	id:	VHN-374280	Trust: 0.1
db:	VULMON	id:	CVE-2021-1226	Trust: 0.1

sources: VULHUB: VHN-374280 // VULMON: CVE-2021-1226 // JVNDB: JVNDB-2021-002552 // CNNVD: CNNVD-202101-968 // NVD: CVE-2021-1226

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-cucm-logging-6qswkryz	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2021-1226	Trust: 1.4
url:	https://www.auscert.org.au/bulletins/esb-2021.0152/	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/532.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULHUB: VHN-374280 // VULMON: CVE-2021-1226 // JVNDB: JVNDB-2021-002552 // CNNVD: CNNVD-202101-968 // NVD: CVE-2021-1226

SOURCES

db:	VULHUB	id:	VHN-374280
db:	VULMON	id:	CVE-2021-1226
db:	JVNDB	id:	JVNDB-2021-002552
db:	CNNVD	id:	CNNVD-202101-968
db:	NVD	id:	CVE-2021-1226

LAST UPDATE DATE

2024-11-23T23:01:10.052000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-374280	date:	2021-01-19T00:00:00
db:	VULMON	id:	CVE-2021-1226	date:	2021-01-19T00:00:00
db:	JVNDB	id:	JVNDB-2021-002552	date:	2021-09-22T08:52:00
db:	CNNVD	id:	CNNVD-202101-968	date:	2021-01-21T00:00:00
db:	NVD	id:	CVE-2021-1226	date:	2024-11-21T05:43:52.397

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-374280	date:	2021-01-13T00:00:00
db:	VULMON	id:	CVE-2021-1226	date:	2021-01-13T00:00:00
db:	JVNDB	id:	JVNDB-2021-002552	date:	2021-09-22T00:00:00
db:	CNNVD	id:	CNNVD-202101-968	date:	2021-01-13T00:00:00
db:	NVD	id:	CVE-2021-1226	date:	2021-01-13T22:15:20.490