PT-2021-1915 · Cisco · Cisco Nx-Os +2

🗓️ 03 Feb 2021 00:00:00Reported by Positive TechnologiesType

Unauthenticated attacker can bypass IPv6 ACL on Cisco IOS XR and NX-OS due to IPv6 traffic handling flaw.

Reporter	Title	Published	Views	Family All 15
BDU FSTEC	The vulnerability of the IPv6 traffic processing services in Cisco IOS XR and Cisco NX-OS systems allows attackers to enhance their privileges.	16 Feb 202100:00	–	bdu_fstec
Circl	CVE-2021-1389	4 Feb 202120:34	–	circl
Cisco	Cisco IOS XR and Cisco NX-OS Software IPv6 Access Control List Bypass Vulnerability	3 Feb 202116:00	–	cisco
Tenable Nessus	Cisco IOS XR Software IPv6 Access Control List Bypass (cisco-sa-ipv6-acl-CHgdYk8j)	12 Feb 202100:00	–	nessus
Tenable Nessus	Cisco NX-OS Software IPv6 Access Control List Bypass (cisco-sa-ipv6-acl-CHgdYk8j)	12 Feb 202100:00	–	nessus
Tenable Nessus	Cisco IOS XR and NX-OS Software IPv6 Access Control List Bypass (CVE-2021-1389)	4 Jan 202400:00	–	nessus
CNNVD	Cisco NX-OS Software和Cisco IOS XR 安全漏洞	3 Feb 202100:00	–	cnnvd
CNVD	Cisco IOS XR and Cisco NX-OS Software Access Control Error Vulnerability	4 Feb 202100:00	–	cnvd
CVE	CVE-2021-1389	4 Feb 202116:40	–	cve
Cvelist	CVE-2021-1389 Cisco IOS XR and Cisco NX-OS Software IPv6 Access Control List Bypass Vulnerability	4 Feb 202116:40	–	cvelist

Source	Link
bdu	www.bdu.fstec.ru/vul/2021-00705
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-1389
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv6-acl-CHgdYk8j
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv6-acl-CHgdYk8j
t	www.t.me/cibsecurity/23085
t	www.t.me/cvenotify/9440
t	www.t.me/cvenotify/9618

20 Sep 2022 00:00Current

6.5Medium risk

Vulners AI Score6.5

CVSS 26.4

CVSS 3.15.8 - 6.5

EPSS0.00383

SSVC