{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2021-1466", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2020-11-13T00:00:00.000Z", "datePublished": "2024-11-15T17:04:35.138Z", "dateUpdated": "2024-11-15T18:20:54.312Z"}, "containers": {"cna": {"title": "Cisco SD-WAN vDaemon Buffer Overflow Vulnerability", "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L/RL:X/RC:X/E:X", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "LOW"}}], "descriptions": [{"lang": "en", "value": "A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause a buffer overflow on an affected system, resulting in a denial of service (DoS) condition.\r\nThe vulnerability is due to incomplete bounds checks for data that is provided to the vDaemon service of an affected system. An attacker could exploit this vulnerability by sending malicious data to the vDaemon listening service on the affected system. A successful exploit could allow the attacker to cause a buffer overflow condition on the affected system, which could allow the attacker to cause the vDaemon listening service to reload and result in a DoS condition.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vdaemon-bo-RuzzEA2", "name": "cisco-sa-sdwan-vdaemon-bo-RuzzEA2"}], "exploits": [{"lang": "en", "value": "The Cisco\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-sdwan-vdaemon-bo-RuzzEA2", "discovery": "INTERNAL", "defects": ["CSCvt11526"]}, "problemTypes": [{"descriptions": [{"lang": "en", "description": "Improper Input Validation", "type": "cwe", "cweId": "CWE-20"}]}], "affected": [{"vendor": "Cisco", "product": "Cisco Catalyst SD-WAN Manager", "versions": [{"version": "19.2.1", "status": "affected"}, {"version": "18.4.4", "status": "affected"}, {"version": "20.1.1.1", "status": "affected"}, {"version": "20.1.1", "status": "affected"}, {"version": "19.3.0", "status": "affected"}, {"version": "19.2.2", "status": "affected"}, {"version": "19.2.099", "status": "affected"}, {"version": "18.3.6", "status": "affected"}, {"version": "18.3.7", "status": "affected"}, {"version": "19.2.0", "status": "affected"}, {"version": "18.3.8", "status": "affected"}, {"version": "19.0.0", "status": "affected"}, {"version": "19.1.0", "status": "affected"}, {"version": "18.4.302", "status": "affected"}, {"version": "18.4.303", "status": "affected"}, {"version": "19.2.097", "status": "affected"}, {"version": "19.2.098", "status": "affected"}, {"version": "17.2.10", "status": "affected"}, {"version": "18.3.6.1", "status": "affected"}, {"version": "19.0.1a", "status": "affected"}, {"version": "18.2.0", "status": "affected"}, {"version": "18.4.3", "status": "affected"}, {"version": "18.4.1", "status": "affected"}, {"version": "17.2.8", "status": "affected"}, {"version": "18.3.3.1", "status": "affected"}, {"version": "18.4.0", "status": "affected"}, {"version": "18.3.1", "status": "affected"}, {"version": "17.2.6", "status": "affected"}, {"version": "17.2.9", "status": "affected"}, {"version": "18.3.4", "status": "affected"}, {"version": "17.2.5", "status": "affected"}, {"version": "18.3.1.1", "status": "affected"}, {"version": "18.3.5", "status": "affected"}, {"version": "18.4.0.1", "status": "affected"}, {"version": "18.3.3", "status": "affected"}, {"version": "17.2.7", "status": "affected"}, {"version": "17.2.4", "status": "affected"}, {"version": "18.3.0", "status": "affected"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-11-15T17:04:35.138Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-15T18:20:51.133605Z", "id": "CVE-2021-1466", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-15T18:20:54.312Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-1466", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-15T18:20:51.133605Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-15T18:20:46.149Z"}}], "cna": {"title": "Cisco SD-WAN vDaemon Buffer Overflow Vulnerability", "source": {"defects": ["CSCvt11526"], "advisory": "cisco-sa-sdwan-vdaemon-bo-RuzzEA2", "discovery": "INTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L/RL:X/RC:X/E:X", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco Catalyst SD-WAN Manager", "versions": [{"status": "affected", "version": "19.2.1"}, {"status": "affected", "version": "18.4.4"}, {"status": "affected", "version": "20.1.1.1"}, {"status": "affected", "version": "20.1.1"}, {"status": "affected", "version": "19.3.0"}, {"status": "affected", "version": "19.2.2"}, {"status": "affected", "version": "19.2.099"}, {"status": "affected", "version": "18.3.6"}, {"status": "affected", "version": "18.3.7"}, {"status": "affected", "version": "19.2.0"}, {"status": "affected", "version": "18.3.8"}, {"status": "affected", "version": "19.0.0"}, {"status": "affected", "version": "19.1.0"}, {"status": "affected", "version": "18.4.302"}, {"status": "affected", "version": "18.4.303"}, {"status": "affected", "version": "19.2.097"}, {"status": "affected", "version": "19.2.098"}, {"status": "affected", "version": "17.2.10"}, {"status": "affected", "version": "18.3.6.1"}, {"status": "affected", "version": "19.0.1a"}, {"status": "affected", "version": "18.2.0"}, {"status": "affected", "version": "18.4.3"}, {"status": "affected", "version": "18.4.1"}, {"status": "affected", "version": "17.2.8"}, {"status": "affected", "version": "18.3.3.1"}, {"status": "affected", "version": "18.4.0"}, {"status": "affected", "version": "18.3.1"}, {"status": "affected", "version": "17.2.6"}, {"status": "affected", "version": "17.2.9"}, {"status": "affected", "version": "18.3.4"}, {"status": "affected", "version": "17.2.5"}, {"status": "affected", "version": "18.3.1.1"}, {"status": "affected", "version": "18.3.5"}, {"status": "affected", "version": "18.4.0.1"}, {"status": "affected", "version": "18.3.3"}, {"status": "affected", "version": "17.2.7"}, {"status": "affected", "version": "17.2.4"}, {"status": "affected", "version": "18.3.0"}], "defaultStatus": "unknown"}], "exploits": [{"lang": "en", "value": "The Cisco\u00a0Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vdaemon-bo-RuzzEA2", "name": "cisco-sa-sdwan-vdaemon-bo-RuzzEA2"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause a buffer overflow on an affected system, resulting in a denial of service (DoS) condition.\r\nThe vulnerability is due to incomplete bounds checks for data that is provided to the vDaemon service of an affected system. An attacker could exploit this vulnerability by sending malicious data to the vDaemon listening service on the affected system. A successful exploit could allow the attacker to cause a buffer overflow condition on the affected system, which could allow the attacker to cause the vDaemon listening service to reload and result in a DoS condition.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-20", "description": "Improper Input Validation"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-11-15T17:04:35.138Z"}}}, "cveMetadata": {"cveId": "CVE-2021-1466", "state": "PUBLISHED", "dateUpdated": "2024-11-15T18:20:54.312Z", "dateReserved": "2020-11-13T00:00:00.000Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2024-11-15T17:04:35.138Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the vDaemon service of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to cause a buffer overflow on an affected system, resulting in a denial of service (DoS) condition.\r\nThe vulnerability is due to incomplete bounds checks for data that is provided to the vDaemon service of an affected system. An attacker could exploit this vulnerability by sending malicious data to the vDaemon listening service on the affected system. A successful exploit could allow the attacker to cause a buffer overflow condition on the affected system, which could allow the attacker to cause the vDaemon listening service to reload and result in a DoS condition.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability."}, {"lang": "es", "value": "Una vulnerabilidad en el servicio vDaemon de Cisco SD-WAN vManage Software podr\u00eda permitir que un atacante local autenticado provoque un desbordamiento de b\u00fafer en un sistema afectado, lo que dar\u00eda como resultado una condici\u00f3n de denegaci\u00f3n de servicio (DoS). La vulnerabilidad se debe a comprobaciones de los l\u00edmites incompletas para los datos que se proporcionan al servicio vDaemon de un sistema afectado. Un atacante podr\u00eda aprovechar esta vulnerabilidad enviando datos maliciosos al servicio de escucha vDaemon en el sistema afectado. Una explotaci\u00f3n exitosa podr\u00eda permitir que el atacante provoque una condici\u00f3n de desbordamiento de b\u00fafer en el sistema afectado, lo que podr\u00eda permitirle al atacante hacer que el servicio de escucha vDaemon se vuelva a cargar y genere una condici\u00f3n de denegaci\u00f3n de servicio (DoS). Cisco ha publicado actualizaciones de software que solucionan esta vulnerabilidad. No existen workarounds que solucionen esta vulnerabilidad."}], "id": "CVE-2021-1466", "lastModified": "2024-11-18T17:11:56.587", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.5, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2024-11-15T17:15:07.670", "references": [{"source": "ykramarz@cisco.com", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-vdaemon-bo-RuzzEA2"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "ykramarz@cisco.com", "type": "Primary"}]}

{}