Risk | Low |
Patch available | YES |
Number of vulnerabilities | 1 |
CVE-ID | CVE-2021-1447 |
CWE-ID | CWE-269 |
Exploitation vector | Local |
Public exploit | N/A |
Vulnerable software Subscribe |
Cisco AsyncOS for Cisco Content Security Management Appliance Server applications / IDS/IPS systems, Firewalls and proxy servers |
Vendor |
Security Bulletin
This security bulletin contains one low risk vulnerability.
EUVDB-ID: #VU52906
Risk: Low
CVSSv3.1: 5.8 [CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-1447
CWE-ID:
CWE-269 - Improper Privilege Management
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges.
The vulnerability exists due to a procedural flaw in the password generation algorithm. A local user can enable specific Administrator-only features and connect to the appliance through the CLI with elevated privileges.
Successful exploitation of the vulnerability may allow execution of arbitrary code with root privileges.
Install updates from vendor's website.
Vulnerable software versionsCisco AsyncOS for Cisco Content Security Management Appliance: before 13.8.1 068
External linkshttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sma-priv-esc-JJ8zxQsC
http://bst.cloudapps.cisco.com/bugsearch/bug/CSCvx14681
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.