CRITICAL✓ PATCH🇬🇧 English

CVE-2021-1393

CVSS 9.8v3.1pub. 2021-02-24upd. 2024-11-21

Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote attacker to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For more information about these vulnerabilities, see the Details section of this advisory.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Cisco Application Policy Infrastructure Controller

    APP
    Cisco
    1.1.3
  • Cisco Application Services Engine

    APP
    Cisco
    1.1 – 1.1\(3e\) (bez)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2021-1577CRITICAL9.1ten sam produkt

A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Clou...

CVE-2021-1388CRITICAL10.0ten sam produkt

A vulnerability in an API endpoint of Cisco ACI Multi-Site Orchestrator (MSO) installed on the Application Ser...

CVE-2021-1396CRITICAL9.8ten sam produkt

Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote attacker ...

CVE-2023-20011HIGH8.8ten sam produkt

A vulnerability in the web-based management interface of Cisco Application Policy Infrastructure Controller (A...

CVE-2021-1578HIGH8.8ten sam produkt

A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Clou...