CVE-2021-1397

🗓️ 06 May 2021 12:42:43Reported by ciscoType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 57 Views

Vulnerability in Cisco IMC Software allows remote attackers to redirect users to malicious site

Reporter	Title	Published	Views	Family All 8
Cisco	Cisco Integrated Management Controller Open Redirect Vulnerability	5 May 202116:00	–	cisco
CNNVD	Cisco Integrated Management Controller 输入验证错误漏洞	5 May 202100:00	–	cnnvd
CNVD	Cisco Integrated Management Controller Open Redirect Vulnerability (CNVD-2021-37694)	6 May 202100:00	–	cnvd
Cvelist	CVE-2021-1397 Cisco Integrated Management Controller Open Redirect Vulnerability	6 May 202112:42	–	cvelist
EUVD	EUVD-2021-6864	3 Oct 202520:07	–	euvd
NVD	CVE-2021-1397	6 May 202113:15	–	nvd
Prion	Input validation	6 May 202113:15	–	prion
Vulnrichment	CVE-2021-1397 Cisco Integrated Management Controller Open Redirect Vulnerability	6 May 202112:42	–	vulnrichment

NVD

Node

cisco integrated_management_controllerRange<3.2(12.4)

cisco ucs_managerRange≤4.1(3b)

Node

cisco encs_5100_firmwareRange≤4.4.2

AND

cisco encs_5100Match-

Node

cisco encs_5400_firmwareRange≤4.4.2

AND

cisco encs_5400Match-

Node

cisco c220_m6_firmwareRange≤4.1(2f)

AND

cisco c220_m6Match-

Node

cisco c225_m6_firmwareRange≤4.1(2f)

AND

cisco c225_m6Match-

Node

cisco c240_m6_firmwareRange≤4.1(2f)

AND

cisco c240_m6Match-

Node

cisco c245_m6_firmwareRange≤4.1(2f)

AND

cisco c245_m6Match-

Node

cisco c125_m5_firmwareRange≤4.1(2f)

AND

cisco c125_m5Match-

Node

cisco c220_m5_firmwareRange≤4.1(2f)

AND

cisco c220_m5Match-

Node

cisco c240_m5_firmwareRange≤4.1(2f)

AND

cisco c240_m5Match-

Node

cisco c480_m5_firmwareRange≤4.1(2f)

AND

cisco c480_m5Match-

Node

cisco c480_ml_m5_firmwareRange≤4.1(2f)

AND

cisco c480_ml_m5Match-

Node

cisco ucs-e140s_firmwareRange≤3.2(11.5)

AND

cisco ucs-e140sMatch-

Node

cisco ucs-e140d_firmwareRange≤3.2(11.5)

AND

cisco ucs-e140dMatch-

Node

cisco ucs-e160d_firmwareRange≤3.2(11.5)

AND

cisco ucs-e160dMatch-

Node

cisco ucs-e160s-m3_firmwareRange≤3.2(11.5)

AND

cisco ucs-e160s-m3Match-

Node

cisco ucs-e180d-m3_firmwareRange≤3.2(11.5)

AND

cisco ucs-e180d-m3Match-

Node

cisco ucs-e1120d-m3_firmwareRange≤3.2(11.5)

AND

cisco ucs-e1120d-m3Match-

Node

cisco ucs-e140s-m2_firmwareRange≤3.2(11.5)

AND

cisco ucs-e140s-m2Match-

Node

cisco ucs-e160d_firmwareRange≤3.2(11.5)

AND

cisco ucs-e160dMatch-

Node

cisco ucs-e180d-m2_firmwareRange≤3.2(11.5)

AND

cisco ucs-e180d-m2Match-

Node

cisco ucs-e140s-m1_firmwareRange≤3.2(11.5)

AND

cisco ucs-e140s-m1Match-

Node

cisco ucs-e140d_firmwareRange≤3.2(11.5)

AND

cisco ucs-e140dMatch-

Node

cisco ucs-e140dp_firmwareRange≤3.2(11.5)

AND

cisco ucs-e140dpMatch-

Node

cisco ucs-e160d_firmwareRange≤3.2(11.5)

AND

cisco ucs-e160dMatch-

Node

cisco ucs-e160dp-m1_firmwareRange≤3.2(11.5)

AND

cisco ucs-e160dp-m1Match-

Node

cisco ucs_s3260_firmwareRange≤4.0(2o)

AND

cisco ucs_s3260Match-

[
  {
    "product": "Cisco Unified Computing System (Standalone)",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-imc-openred-zAYrU6d2

21 Nov 2024 05:44Current

5.1Medium risk

Vulners AI Score5.1

CVSS 25.8

CVSS 3.14.7 - 6.1

EPSS0.0018

SSVC

CWE-601