A vulnerability in CLI management in Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to access the underlying operating system as the root user. This vulnerability is due to the way the software handles concurrent CLI sessions. An attacker could exploit this vulnerability by authenticating to the device as an administrative user and executing a sequence of commands. A successful exploit could allow the attacker to obtain access to the underlying operating system as the root user.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2021-03-24T20:16:06.095987Z
Updated: 2024-09-16T20:59:04.782Z
Reserved: 2020-11-13T00:00:00
Link: CVE-2021-1281
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-03-24T21:15:11.443
Modified: 2023-11-07T03:27:51.870
Link: CVE-2021-1281
Redhat
No data.