Lucene search

K
cve[email protected]CVE-2021-1400
HistoryMay 06, 2021 - 1:15 p.m.

CVE-2021-1400

2021-05-0613:15:09
CWE-269
web.nvd.nist.gov
29
4
cve
2021
1400
cisco
small business
wireless access point
vulnerabilities
web-based
management interface
remote attacker
sensitive information
arbitrary commands
nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

52.5%

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to obtain sensitive information from or inject arbitrary commands on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Affected configurations

NVD
Node
ciscowap125_firmwareRange1.0.3.1
AND
ciscowap125Match-
Node
ciscowap131_firmwareRange1.0.2.17
AND
ciscowap131Match-
Node
ciscowap150_firmwareRange1.1.2.4
AND
ciscowap150Match-
Node
ciscowap351_firmwareRange1.0.2.17
AND
ciscowap351Match-
Node
ciscowap361_firmwareRange1.1.2.4
AND
ciscowap361Match-
Node
ciscowap581_firmwareRange1.0.3.1
AND
ciscowap581Match-

CNA Affected

[
  {
    "product": "Cisco Business Wireless Access Point Software ",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

Social References

More

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

52.5%

Related for CVE-2021-1400