CVE-2021-1462
CVSS 3.0 Score 4.4 of 10 (medium)
Details
Published Nov 18, 2024
CWE ID 20
Summary
CVE-2021-1462 is a privilege escalation vulnerability affecting the CLI of Cisco SD-WAN vManage Software. An authenticated, local attacker with a valid Administrator account can exploit this issue by creating a malicious file, potentially gaining root privileges on the affected system. This vulnerability arises due to incorrect privilege assignment in the software. There are no known workarounds to mitigate this issue, and Cisco has released software updates to address it.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Cisco Catalyst SD-WAN Manager
Affected Vendors
- Cisco Systems Inc