A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affected system. The vulnerability is due to insufficient user authorization. An attacker could exploit this vulnerability by accessing the vshell of an affected system. A successful exploit could allow the attacker to read database files from the filesystem of the underlying operating system.
History

Tue, 12 Nov 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2021-01-20T20:10:44.307470Z

Updated: 2024-11-12T20:20:27.534Z

Reserved: 2020-11-13T00:00:00

Link: CVE-2021-1235

cve-icon Vulnrichment

Updated: 2024-08-03T16:02:56.004Z

cve-icon NVD

Status : Analyzed

Published: 2021-01-20T21:15:12.020

Modified: 2021-01-27T20:47:20.633

Link: CVE-2021-1235

cve-icon Redhat

No data.