Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote attacker to perform a command injection attack on an affected device. These vulnerabilities are due to insufficient input sanitization when executing affected commands. A high-privileged attacker could exploit these vulnerabilities on a Cisco DNA Spaces Connector by injecting crafted input during command execution. A successful exploit could allow the attacker to execute arbitrary commands as root within the Connector docker container.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2021-05-22T06:40:52.362306Z
Updated: 2024-09-17T03:12:47.554Z
Reserved: 2020-11-13T00:00:00
Link: CVE-2021-1560
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-05-22T07:15:07.967
Modified: 2023-11-07T03:28:37.813
Link: CVE-2021-1560
Redhat
No data.