SB2021032415 - Remote code execution in Cisco IOS XE SD-WAN Software vDaemon

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2021032415

SB2021032415 - Remote code execution in Cisco IOS XE SD-WAN Software vDaemon

Published: March 24, 2021

Security Bulletin ID SB2021032415
Severity
Critical
Patch available
YES
Number of vulnerabilities 1
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Critical 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 1 security vulnerability.


1) Buffer overflow (CVE-ID: CVE-2021-1433)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing network traffic in the vDaemon process. A remote attacker can send specially crafted packets to the system, trigger memory corruption and execute arbitrary code on the target system with root privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

The following devices are affected by this vulnerability:

  • 1000 Series Integrated Services Routers (ISRs)
  • 4000 Series ISRs
  • 5400 Enterprise Network Compute System with Cisco Integrated Services Virtual Router (ISRv) installed
  • ASR 1000 Series Aggregation Services Routers
  • Cloud Services Router 1000V Series


Remediation

Install update from vendor's website.

References