Main Vulnerability Database Vulnerabilities #VU57767

Permissions, Privileges, and Access Controls in Cisco Systems, Inc products - CVE-2021-34787

Published: October 28, 2021

Vulnerability identifier: #VU57767

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2021-34787

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
ASA 5500-X Series Firewalls
Cisco Adaptive Security Appliance (ASA)
Cisco Firewall Threat Defense (FTD)

Software vendor:
Cisco Systems, Inc

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists in the identity-based firewall (IDFW) rule processing feature. A remote attacker can send a specially crafted network request to bypass access control list (ACL) rules on the device, bypass security protections, and send network traffic to unauthorized hosts.

Remediation

Install updates from vendor's website.

Permissions, Privileges, and Access Controls in Cisco Systems, Inc products - CVE-2021-34787

Description

Remediation

External links

Please verify you're human