A vulnerability in the configuration dashboard of Cisco Common Services Platform Collector (CSPC) could allow an authenticated, remote attacker to execute arbitrary code. This vulnerability is due to insufficient sanitization of configuration entries. An attacker could exploit this vulnerability by logging in as a super admin and entering crafted input to configuration options on the CSPC configuration dashboard. A successful exploit could allow the attacker to execute remote code as root.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2021-06-04T16:45:54.074879Z
Updated: 2024-09-17T03:08:25.440Z
Reserved: 2020-11-13T00:00:00
Link: CVE-2021-1538
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-06-04T17:15:09.550
Modified: 2023-11-07T03:28:34.193
Link: CVE-2021-1538
Redhat
No data.