Details of VAR-202109-0233

ID

VAR-202109-0233

CVE

CVE-2021-1419

TITLE

plural Cisco Access Points Platform vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2021-012515

DESCRIPTION

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations within the SSH management interface. A network administrator user could exploit this vulnerability by accessing an affected device through SSH management to make a configuration change. A successful exploit could allow the attacker to gain privileges equivalent to the root user. plural Cisco Access Points (APs) The platform has an unspecified vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements

Trust: 2.34

sources: NVD: CVE-2021-1419 // JVNDB: JVNDB-2021-012515 // CNNVD: CNNVD-202104-975 // VULHUB: VHN-374473 // VULMON: CVE-2021-1419

AFFECTED PRODUCTS

vendor:	cisco	model:	catalyst 9115axe	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst iw6300 dc	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1830e	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1562e	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9800	scope:	gte	version:	17.3	Trust: 1.0
vendor:	cisco	model:	aironet 1840i	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9130axi	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9120axe	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 3800e	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9124axi	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9800	scope:	lt	version:	17.3.3	Trust: 1.0
vendor:	cisco	model:	catalyst 9105axi	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9800	scope:	lt	version:	16.12.6	Trust: 1.0
vendor:	cisco	model:	aironet 1562d	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 2800i	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	wireless lan controller software	scope:	gte	version:	8.10	Trust: 1.0
vendor:	cisco	model:	aironet 3800p	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	wireless lan controller software	scope:	lt	version:	8.10.151.0	Trust: 1.0
vendor:	cisco	model:	aironet 1815w	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9115axi	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9124axd	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9105axw	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1815t	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1850i	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst iw6300 dcw	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 4800	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	1100-8p	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	1120	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9117	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1542d	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 2800e	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	1160	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1815i	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1815m	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst iw6300 ac	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	esw6300	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9800	scope:	eq	version:	17.4	Trust: 1.0
vendor:	cisco	model:	catalyst 9120axp	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1830i	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9130axe	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9800	scope:	gte	version:	16.12	Trust: 1.0
vendor:	cisco	model:	aironet 3800i	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	catalyst 9120axi	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1850e	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1542i	scope:	eq	version:	-	Trust: 1.0
vendor:	cisco	model:	aironet 1562i	scope:	eq	version:	-	Trust: 1.0
vendor:	シスコシステムズ	model:	cisco aironet 1840i シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 1562d シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 4800 シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 1850e シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 1815m シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 3800p シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 2800i シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 1542d シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco catalyst 9105axi シリーズ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco aironet 1830e シリーズ	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2021-012515 // NVD: CVE-2021-1419

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2021-1419
value:	HIGH
Trust: 1.8
ykramarz@cisco.com:	CVE-2021-1419
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-202104-975
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-202109-1551
value:	HIGH
Trust: 0.6
VULHUB:	VHN-374473
value:	HIGH
Trust: 0.1
VULMON:	CVE-2021-1419
value:	HIGH
Trust: 0.1

NVD:
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	FALSE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	FALSE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	FALSE
version:	2.0
Trust: 1.0
NVD:	CVE-2021-1419
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.9
VULHUB:	VHN-374473
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

NVD:
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 2.0
NVD:	CVE-2021-1419
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-374473 // VULMON: CVE-2021-1419 // JVNDB: JVNDB-2021-012515 // NVD: CVE-2021-1419 // NVD: CVE-2021-1419 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-1551

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2021-012515 // NVD: CVE-2021-1419

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202109-1551

TYPE

other

Trust: 1.2

sources: CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-1551

CONFIGURATIONS

sources: NVD: CVE-2021-1419

PATCH

title:	cisco-sa-cisco-ap-LLjsGxv	url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-cisco-ap-lljsgxv	Trust: 0.8
title:	Cisco Access Points Fixes for access control error vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=163432	Trust: 0.6
title:	Cisco: Cisco Access Points SSH Management Privilege Escalation Vulnerability	url:	https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-cisco-ap-lljsgxv	Trust: 0.1

sources: VULMON: CVE-2021-1419 // JVNDB: JVNDB-2021-012515 // CNNVD: CNNVD-202109-1551

EXTERNAL IDS

db:	NVD	id:	CVE-2021-1419	Trust: 3.4
db:	JVNDB	id:	JVNDB-2021-012515	Trust: 0.8
db:	CS-HELP	id:	SB2021041363	Trust: 0.6
db:	CNNVD	id:	CNNVD-202104-975	Trust: 0.6
db:	CS-HELP	id:	SB2021092305	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.3176	Trust: 0.6
db:	CNNVD	id:	CNNVD-202109-1551	Trust: 0.6
db:	VULHUB	id:	VHN-374473	Trust: 0.1
db:	VULMON	id:	CVE-2021-1419	Trust: 0.1

sources: VULHUB: VHN-374473 // VULMON: CVE-2021-1419 // JVNDB: JVNDB-2021-012515 // NVD: CVE-2021-1419 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-1551

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-cisco-ap-lljsgxv	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2021-1419	Trust: 1.4
url:	https://www.cybersecurity-help.cz/vdb/sb2021041363	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021092305	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.3176	Trust: 0.6
url:	https://vigilance.fr/vulnerability/cisco-aironet-file-write-via-ssh-management-36492	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/269.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULHUB: VHN-374473 // VULMON: CVE-2021-1419 // JVNDB: JVNDB-2021-012515 // NVD: CVE-2021-1419 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-1551

SOURCES

db:	VULHUB	id:	VHN-374473
db:	VULMON	id:	CVE-2021-1419
db:	JVNDB	id:	JVNDB-2021-012515
db:	NVD	id:	CVE-2021-1419
db:	CNNVD	id:	CNNVD-202104-975
db:	CNNVD	id:	CNNVD-202109-1551

LAST UPDATE DATE

2023-12-18T11:22:36.020000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-374473	date:	2022-07-08T00:00:00
db:	VULMON	id:	CVE-2021-1419	date:	2021-09-30T00:00:00
db:	JVNDB	id:	JVNDB-2021-012515	date:	2022-09-01T05:30:00
db:	NVD	id:	CVE-2021-1419	date:	2023-11-07T03:28:15.940
db:	CNNVD	id:	CNNVD-202104-975	date:	2021-04-14T00:00:00
db:	CNNVD	id:	CNNVD-202109-1551	date:	2022-07-11T00:00:00

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-374473	date:	2021-09-23T00:00:00
db:	VULMON	id:	CVE-2021-1419	date:	2021-09-23T00:00:00
db:	JVNDB	id:	JVNDB-2021-012515	date:	2022-09-01T00:00:00
db:	NVD	id:	CVE-2021-1419	date:	2021-09-23T03:15:07.697
db:	CNNVD	id:	CNNVD-202104-975	date:	2021-04-13T00:00:00
db:	CNNVD	id:	CNNVD-202109-1551	date:	2021-09-22T00:00:00