CVE-2021-1232
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Nov 18, 2024
CWE ID 522
Summary
CVE-2021-1232 is a vulnerability affecting Cisco SD-WAN vManage Software's web-based management interface. It allows authenticated, remote attackers to read arbitrary files on affected systems due to insufficient access control for sensitive information. The exploitation of this vulnerability could grant unauthorized access to devices and network management systems, potentially causing significant damage. Cisco has released software updates to address this issue, and no workarounds are currently available.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Cisco Catalyst SD-WAN Manager
Affected Vendors
- Cisco Systems Inc