CVE-2021-1241

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:cisco:ios_xe_sd-wan:-:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:18.3.5:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:18.3.8:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:18.4.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:18.4.4:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:18.4.5:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:19.2.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:19.2.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:19.2.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:19.2.99:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_firmware:20.1.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:sd-wan_vsmart_controller_firmware:*:*:*:*:*:*:*:*
OR cpe:2.3:h:cisco:vedge_100_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:vedge_1000_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:vedge_100b_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:vedge_100m_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:vedge_100wm_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:vedge_2000_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:vedge_5000_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:vedge_cloud_router:-:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:cisco:catalyst_sd-wan_manager:-:*:*:*:*:*:*:*
cpe:2.3:a:cisco:sd-wan_vbond_orchestrator:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:43

Type Values Removed Values Added
References () https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-dosmulti-48jJuEUP - Vendor Advisory () https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-dosmulti-48jJuEUP - Vendor Advisory
CVSS v2 : 7.8
v3 : 7.5
v2 : 7.8
v3 : 8.6

06 Oct 2023, 16:24

Type Values Removed Values Added
First Time Cisco catalyst Sd-wan Manager
CPE cpe:2.3:a:cisco:sd-wan_manager:-:*:*:*:*:*:*:* cpe:2.3:a:cisco:catalyst_sd-wan_manager:-:*:*:*:*:*:*:*

29 Sep 2023, 15:03

Type Values Removed Values Added
CPE cpe:2.3:a:cisco:sd-wan_vmanage:-:*:*:*:*:*:*:* cpe:2.3:a:cisco:sd-wan_manager:-:*:*:*:*:*:*:*
First Time Cisco sd-wan Manager

Information

Published : 2021-01-20 21:15

Updated : 2024-11-21 05:43


NVD link : CVE-2021-1241

Mitre link : CVE-2021-1241

CVE.ORG link : CVE-2021-1241


JSON object : View

Products Affected

cisco

  • vedge_100m_router
  • vedge_2000_router
  • vedge_5000_router
  • sd-wan_vsmart_controller_firmware
  • vedge_100_router
  • catalyst_sd-wan_manager
  • vedge_100b_router
  • vedge_100wm_router
  • sd-wan_vbond_orchestrator
  • sd-wan_firmware
  • vedge_cloud_router
  • ios_xe_sd-wan
  • vedge_1000_router
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer