Vulnerability CVE-2021-1384

Vulnerability Name:

CVE-2021-1384 (CCN-198700)

Assigned:

2020-11-13

Published:

2021-03-24

Updated:

2022-07-29

Summary:

A vulnerability in Cisco IOx application hosting environment of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands into the underlying operating system as the root user. This vulnerability is due to incomplete validation of fields in the application packages loaded onto IOx. An attacker could exploit this vulnerability by creating a crafted application .tar file and loading it onto the device. A successful exploit could allow the attacker to perform command injection into the underlying operating system as the root user.

CVSS v3 Severity:

7.2 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)
6.3 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): High User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): None

CVSS v2 Severity:

8.5 High (CVSS v2 Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

8.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-78
CWE-77

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2021-1384

Source: XF
Type: UNKNOWN
cisco-cve20211384-cmd-exec(198700)

Source: MISC
Type: Exploit, Third Party Advisory
https://github.com/orangecertcc/security-research/security/advisories/GHSA-h332-fj6p-2232

Source: CCN
Type: Cisco Security Advisory cisco-sa-iox-cmdinj-RkSURGHG
Cisco IOx for IOS XE Software Command Injection Vulnerability

Source: CISCO
Type: Vendor Advisory
20210324 Cisco IOx for IOS XE Software Command Injection Vulnerability

Vulnerable Configuration:

Configuration 1:

cpe:/o:cisco:ios_xe:17.5.0:*:*:*:*:*:*:*

OR cpe:/o:cisco:ios_xe:*:*:*:*:*:*:*:* (Version < 16.6.9)

OR cpe:/o:cisco:ios_xe:*:*:*:*:*:*:*:* (Version >= 16.9.0 and < 16.9.7)

OR cpe:/o:cisco:ios_xe:*:*:*:*:*:*:*:* (Version >= 17.3.2 and < 17.3.3)

OR cpe:/o:cisco:ios_xe:*:*:*:*:*:*:*:* (Version >= 17.4.0 and < 17.4.2)

Denotes that component is vulnerable

BACK