CVE-2021-1232

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 18, 2024
CWE ID 522

Summary

CVE-2021-1232 is a vulnerability affecting Cisco SD-WAN vManage Software's web-based management interface. It allows authenticated, remote attackers to read arbitrary files on affected systems due to insufficient access control for sensitive information. The exploitation of this vulnerability could grant unauthorized access to devices and network management systems, potentially causing significant damage. Cisco has released software updates to address this issue, and no workarounds are currently available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Cisco Catalyst SD-WAN Manager

Affected Vendors

  • Cisco Systems Inc