Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-dosmulti-48jJuEUP | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
|
History
06 Oct 2023, 16:24
Type | Values Removed | Values Added |
---|---|---|
First Time |
Cisco catalyst Sd-wan Manager
|
|
CPE | cpe:2.3:a:cisco:catalyst_sd-wan_manager:-:*:*:*:*:*:*:* |
29 Sep 2023, 15:03
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:cisco:sd-wan_manager:-:*:*:*:*:*:*:* | |
First Time |
Cisco sd-wan Manager
|
27 Jan 2021, 20:26
Type | Values Removed | Values Added |
---|---|---|
References | (CISCO) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-dosmulti-48jJuEUP - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 7.8
v3 : 7.5 |
CPE | cpe:2.3:o:cisco:sd-wan_firmware:19.2.99:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:18.3.5:*:*:*:*:*:*:* cpe:2.3:a:cisco:sd-wan_vbond_orchestrator:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_2000_router:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:19.2.0:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios_xe_sd-wan:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_100wm_router:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:19.2.1:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_5000_router:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_1000_router:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:19.2.2:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:18.3.8:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_100m_router:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_100b_router:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:20.1.0:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:18.4.1:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_100_router:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:18.4.5:*:*:*:*:*:*:* cpe:2.3:h:cisco:vedge_cloud_router:-:*:*:*:*:*:*:* cpe:2.3:a:cisco:sd-wan_vmanage:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_vsmart_controller_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:cisco:sd-wan_firmware:18.4.4:*:*:*:*:*:*:* |
26 Jan 2021, 18:16
Type | Values Removed | Values Added |
---|---|---|
Summary | Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory. |
20 Jan 2021, 21:31
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-01-20 21:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-1241
Mitre link : CVE-2021-1241
CVE.ORG link : CVE-2021-1241
JSON object : View
Products Affected
cisco
- vedge_100wm_router
- catalyst_sd-wan_manager
- vedge_100_router
- vedge_1000_router
- sd-wan_vsmart_controller_firmware
- vedge_100b_router
- vedge_100m_router
- vedge_5000_router
- vedge_cloud_router
- vedge_2000_router
- sd-wan_vbond_orchestrator
- ios_xe_sd-wan
- sd-wan_firmware
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer