CVE-2021-1614

Cisco SD-WAN Software Information Disclosure Vulnerability

Severity Score

5.3

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Attend

*SSVC

Descriptions

A vulnerability in the Multiprotocol Label Switching (MPLS) packet handling function of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to gain access to information stored in MPLS buffer memory. This vulnerability is due to insufficient handling of malformed MPLS packets that are processed by a device that is running Cisco SD-WAN Software. An attacker could exploit this vulnerability by sending a crafted MPLS packet to an affected device that is running Cisco SD-WAN Software or Cisco SD-WAN vManage Software. A successful exploit could allow the attacker to gain unauthorized access to sensitive information.

Una vulnerabilidad en la función de administración de paquetes Multiprotocol Label Switching (MPLS) del Software Cisco SD-WAN, podría permitir a un atacante remoto no autenticado acceder a la información almacenada en la memoria intermedia de MPLS. Esta vulnerabilidad es debido al manejo insuficiente de paquetes MPLS malformados que son procesados por un dispositivo que ejecuta el software Cisco SD-WAN. Un atacante podría explotar esta vulnerabilidad mediante el envío un paquete MPLS diseñado a un dispositivo afectado que ejecute el software Cisco SD-WAN o el software Cisco SD-WAN vManage. Una explotación con éxito podría permitir al atacante obtener acceso no autorizado a información confidencial

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:Attend

Exploitation

None

Automatable

Yes

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2020-11-13 CVE Reserved
2021-07-22 CVE Published
2024-07-24 EPSS Updated
2024-11-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-126: Buffer Over-read

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-mpls-infodisclos-MSSRFkZq	2023-11-07

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Sd-wan Search vendor "Cisco" for product "Sd-wan"				>= 18.4.0 < 18.4.6 Search vendor "Cisco" for product "Sd-wan" and version " >= 18.4.0 < 18.4.6"		-		Affected
Cisco Search vendor "Cisco"		Sd-wan Search vendor "Cisco" for product "Sd-wan"				>= 19.2.0 < 19.2.3 Search vendor "Cisco" for product "Sd-wan" and version " >= 19.2.0 < 19.2.3"		-		Affected
Cisco Search vendor "Cisco"		Sd-wan Search vendor "Cisco" for product "Sd-wan"				>= 20.3 < 20.3.2 Search vendor "Cisco" for product "Sd-wan" and version " >= 20.3 < 20.3.2"		-		Affected
Cisco Search vendor "Cisco"		Sd-wan Search vendor "Cisco" for product "Sd-wan"				>= 20.4 < 20.4.1 Search vendor "Cisco" for product "Sd-wan" and version " >= 20.4 < 20.4.1"		-		Affected
Cisco Search vendor "Cisco"		Sd-wan Search vendor "Cisco" for product "Sd-wan"				>= 20.5 < 20.5.1 Search vendor "Cisco" for product "Sd-wan" and version " >= 20.5 < 20.5.1"		-		Affected