Lucene search

K
ciscoCiscoCISCO-SA-SD-WAN-RHPBE34A
HistoryOct 20, 2021 - 4:00 p.m.

Cisco IOS XE SD-WAN Software Command Injection Vulnerability

2021-10-2016:00:00
tools.cisco.com
60
vulnerability
cli
cisco
ios xe
sd-wan
software
command injection
authenticated
local attacker
arbitrary commands
root privileges
input validation
exploit
crafted input
operating system
software updates
security advisory.

EPSS

0

Percentile

5.2%

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges.

The vulnerability is due to insufficient input validation by the system CLI. An attacker could exploit this vulnerability by authenticating to an affected device and submitting crafted input to the system CLI. A successful exploit could allow the attacker to execute commands on the underlying operating system with root privileges.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-rhpbE34A [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-rhpbE34A”]

Affected configurations

Vulners
Node
ciscocisco_ios_xe_softwareMatch17.2
OR
ciscocisco_ios_xe_softwareMatch17.2.1r
OR
ciscocisco_ios_xe_softwareMatch17.2.1v
OR
ciscocisco_ios_xe_softwareMatch17.2.2
OR
ciscocisco_ios_xe_softwareMatch17.3
OR
ciscocisco_ios_xe_softwareMatch17.3.1
OR
ciscocisco_ios_xe_softwareMatch17.3.2
OR
ciscocisco_ios_xe_softwareMatch17.3.3
OR
ciscocisco_ios_xe_softwareMatch17.3.1a
OR
ciscocisco_ios_xe_softwareMatch17.3.1w
OR
ciscocisco_ios_xe_softwareMatch17.3.2a
OR
ciscocisco_ios_xe_softwareMatch17.3.1x
OR
ciscocisco_ios_xe_softwareMatch17.3.1z
OR
ciscocisco_ios_xe_softwareMatch17.3.3a
OR
ciscocisco_ios_xe_softwareMatch17.4
OR
ciscocisco_ios_xe_softwareMatch17.4.1
OR
ciscocisco_ios_xe_softwareMatch17.4.1a
OR
ciscocisco_ios_xe_softwareMatch17.4.1b
OR
ciscocisco_ios_xe_softwareMatch17.4.1c
OR
ciscoios_xe_sd-wanMatch16.9
OR
ciscoios_xe_sd-wanMatch16.9.1
OR
ciscoios_xe_sd-wanMatch16.9.2
OR
ciscoios_xe_sd-wanMatch16.9.3
OR
ciscoios_xe_sd-wanMatch16.9.4
OR
ciscoios_xe_sd-wanMatch16.10
OR
ciscoios_xe_sd-wanMatch16.10.1
OR
ciscoios_xe_sd-wanMatch16.10.2
OR
ciscoios_xe_sd-wanMatch16.10.3
OR
ciscoios_xe_sd-wanMatch16.10.3a
OR
ciscoios_xe_sd-wanMatch16.10.3b
OR
ciscoios_xe_sd-wanMatch16.10.4
OR
ciscoios_xe_sd-wanMatch16.10.5
OR
ciscoios_xe_sd-wanMatch16.10.6
OR
ciscoios_xe_sd-wanMatch16.11
OR
ciscoios_xe_sd-wanMatch16.11.1a
OR
ciscoios_xe_sd-wanMatch16.11.1
OR
ciscoios_xe_sd-wanMatch16.11.1b
OR
ciscoios_xe_sd-wanMatch16.11.1d
OR
ciscoios_xe_sd-wanMatch16.11.1f
OR
ciscoios_xe_sd-wanMatch16.11.1s
OR
ciscoios_xe_sd-wanMatch16.12
OR
ciscoios_xe_sd-wanMatch16.12.1b
OR
ciscoios_xe_sd-wanMatch16.12.1d
OR
ciscoios_xe_sd-wanMatch16.12.1e
OR
ciscoios_xe_sd-wanMatch16.12.2r
OR
ciscoios_xe_sd-wanMatch16.12.1
OR
ciscoios_xe_sd-wanMatch16.12.1a
OR
ciscoios_xe_sd-wanMatch16.12.1b1
OR
ciscoios_xe_sd-wanMatch16.12.1c
OR
ciscoios_xe_sd-wanMatch16.12.3
OR
ciscoios_xe_sd-wanMatch16.12.4
OR
ciscoios_xe_sd-wanMatch16.12.4a
OR
ciscoios_xe_sd-wanMatch16.12.5
OR
ciscoios_xe_sd-wan_16.12.1b_when_installed_on_1100_series_industrial_integrated_services
OR
ciscocloud_services_router_1000v_firmware
OR
ciscoios_xe_sd-wan_16.10.4_when_installed_on_1000_series_integrated_services
OR
ciscoasr_1000_series_software
OR
ciscoios_xe_sd-wan_16.11.1_when_installed_on_4000_series_integrated_services
OR
ciscointegrated_services_virtual_router_firmware
VendorProductVersionCPE
ciscocisco_ios_xe_software17.2cpe:2.3:a:cisco:cisco_ios_xe_software:17.2:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.2.1rcpe:2.3:a:cisco:cisco_ios_xe_software:17.2.1r:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.2.1vcpe:2.3:a:cisco:cisco_ios_xe_software:17.2.1v:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.2.2cpe:2.3:a:cisco:cisco_ios_xe_software:17.2.2:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.3cpe:2.3:a:cisco:cisco_ios_xe_software:17.3:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.3.1cpe:2.3:a:cisco:cisco_ios_xe_software:17.3.1:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.3.2cpe:2.3:a:cisco:cisco_ios_xe_software:17.3.2:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.3.3cpe:2.3:a:cisco:cisco_ios_xe_software:17.3.3:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.3.1acpe:2.3:a:cisco:cisco_ios_xe_software:17.3.1a:*:*:*:*:*:*:*
ciscocisco_ios_xe_software17.3.1wcpe:2.3:a:cisco:cisco_ios_xe_software:17.3.1w:*:*:*:*:*:*:*
Rows per page:
1-10 of 591

EPSS

0

Percentile

5.2%

Related for CISCO-SA-SD-WAN-RHPBE34A