ID
VAR-202104-0877
CVE
CVE-2021-1479
TITLE
Cisco SD-WAN vManage Software Buffer error vulnerability
Trust: 0.6
sources:
CNNVD: CNNVD-202104-456
DESCRIPTION
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or allow an authenticated, local attacker to gain escalated privileges on an affected system. For more information about these vulnerabilities, see the Details section of this advisory. Cisco SD-WAN vManage Software is a management software for SD-WAN (Software Defined Wide Area Network) solutions from Cisco
Trust: 1.08
sources:
NVD: CVE-2021-1479 //
VULHUB: VHN-374533 //
VULMON: CVE-2021-1479
AFFECTED PRODUCTS
| vendor: | cisco | model: | catalyst sd-wan manager | scope: | lt | version: | 20.4.1 | Trust: 1.0 |
| vendor: | cisco | model: | catalyst sd-wan manager | scope: | gte | version: | 20.4 | Trust: 1.0 |
| vendor: | cisco | model: | sd-wan vmanage | scope: | lt | version: | 20.3.3 | Trust: 1.0 |
| vendor: | cisco | model: | sd-wan vmanage | scope: | gte | version: | 19.3 | Trust: 1.0 |
| vendor: | cisco | model: | sd-wan vmanage | scope: | lt | version: | 19.2.4 | Trust: 1.0 |
sources:
NVD: CVE-2021-1479
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
VULHUB: VHN-374533 //
VULMON: CVE-2021-1479 //
CNNVD: CNNVD-202104-456 //
NVD: CVE-2021-1479 //
NVD: CVE-2021-1479
PROBLEMTYPE DATA
| problemtype: | CWE-119 | Trust: 1.1 |
sources:
VULHUB: VHN-374533 //
NVD: CVE-2021-1479
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202104-456
TYPE
buffer error
Trust: 0.6
sources:
CNNVD: CNNVD-202104-456
PATCH
| title: | Cisco SD-WAN vManage Software Buffer error vulnerability fix | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=147037 | Trust: 0.6 |
| title: | Cisco: Cisco SD-WAN vManage Software Vulnerabilities | url: | https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-vmanage-YuTVWqy | Trust: 0.1 |
| title: | Threatpost | url: | https://threatpost.com/zero-day-bug-soho-routers/165321/ | Trust: 0.1 |
| title: | BleepingComputer | url: | https://www.bleepingcomputer.com/news/security/cisco-fixes-bug-allowing-remote-code-execution-with-root-privileges/ | Trust: 0.1 |
sources:
VULMON: CVE-2021-1479 //
CNNVD: CNNVD-202104-456
EXTERNAL IDS
| db: | NVD | id: | CVE-2021-1479 | Trust: 1.8 |
| db: | CNNVD | id: | CNNVD-202104-456 | Trust: 0.7 |
| db: | AUSCERT | id: | ESB-2021.1163 | Trust: 0.6 |
| db: | SEEBUG | id: | SSVID-99203 | Trust: 0.1 |
| db: | VULHUB | id: | VHN-374533 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2021-1479 | Trust: 0.1 |
sources:
VULHUB: VHN-374533 //
VULMON: CVE-2021-1479 //
CNNVD: CNNVD-202104-456 //
NVD: CVE-2021-1479
REFERENCES
| url: | https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-vmanage-yutvwqy | Trust: 1.9 |
| url: | https://www.auscert.org.au/bulletins/esb-2021.1163 | Trust: 0.6 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2021-1479 | Trust: 0.6 |
| url: | https://cwe.mitre.org/data/definitions/119.html | Trust: 0.1 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
| url: | https://threatpost.com/zero-day-bug-soho-routers/165321/ | Trust: 0.1 |
sources:
VULHUB: VHN-374533 //
VULMON: CVE-2021-1479 //
CNNVD: CNNVD-202104-456 //
NVD: CVE-2021-1479
SOURCES
| db: | VULHUB | id: | VHN-374533 |
| db: | VULMON | id: | CVE-2021-1479 |
| db: | CNNVD | id: | CNNVD-202104-456 |
| db: | NVD | id: | CVE-2021-1479 |
LAST UPDATE DATE
2024-08-14T15:17:17.310000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-374533 | date: | 2021-04-20T00:00:00 |
| db: | VULMON | id: | CVE-2021-1479 | date: | 2021-04-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-202104-456 | date: | 2021-04-21T00:00:00 |
| db: | NVD | id: | CVE-2021-1479 | date: | 2023-11-07T03:28:24.437 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-374533 | date: | 2021-04-08T00:00:00 |
| db: | VULMON | id: | CVE-2021-1479 | date: | 2021-04-08T00:00:00 |
| db: | CNNVD | id: | CNNVD-202104-456 | date: | 2021-04-07T00:00:00 |
| db: | NVD | id: | CVE-2021-1479 | date: | 2021-04-08T04:15:14.047 |