Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-1392
Vulnerability from cvelistv5
Published
2021-03-24 20:07
Modified
2024-11-08 23:33
Severity ?
EPSS score ?
Summary
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T16:11:16.883Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"tags": [
"vendor-advisory",
"x_refsource_CISCO",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2021-1392",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-08T20:19:39.666026Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-08T23:33:05.994Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Cisco IOS",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2021-03-24T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-522",
"description": "CWE-522",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-03-24T20:07:19",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"tags": [
"vendor-advisory",
"x_refsource_CISCO"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
}
],
"source": {
"advisory": "cisco-sa-XE-SAP-OPLbze68",
"defect": [
[
"CSCvu58224"
]
],
"discovery": "INTERNAL"
},
"title": "Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"DATE_PUBLIC": "2021-03-24T16:00:00",
"ID": "CVE-2021-1392",
"STATE": "PUBLIC",
"TITLE": "Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cisco IOS",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "Cisco"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device."
}
]
},
"exploit": [
{
"lang": "en",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
}
],
"impact": {
"cvss": {
"baseScore": "7.8",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-522"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
}
]
},
"source": {
"advisory": "cisco-sa-XE-SAP-OPLbze68",
"defect": [
[
"CSCvu58224"
]
],
"discovery": "INTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2021-1392",
"datePublished": "2021-03-24T20:07:19.109626Z",
"dateReserved": "2020-11-13T00:00:00",
"dateUpdated": "2024-11-08T23:33:05.994Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2021-1392\",\"sourceIdentifier\":\"ykramarz@cisco.com\",\"published\":\"2021-03-24T20:15:14.057\",\"lastModified\":\"2024-11-21T05:44:14.933\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en los permisos de comando de la CLI del Software Cisco IOS y Cisco IOS XE, podr\u00eda permitir a un atacante local autenticado recuperar la contrase\u00f1a para el Protocolo industrial com\u00fan (CIP) y luego configurar remotamente el dispositivo como un usuario administrativo.\u0026#xa0;Esta vulnerabilidad se presenta porque los permisos incorrectos est\u00e1n asociados con el comando de la CLI show cip security.\u0026#xa0;Un atacante podr\u00eda explotar esta vulnerabilidad al emitir el comando para recuperar la contrase\u00f1a de CIP en un dispositivo afectado.\u0026#xa0;Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante reconfigurar el dispositivo\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"ykramarz@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"ykramarz@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-522\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-522\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.0\\\\(1\\\\)ey:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AF55C0A-768F-445A-AF40-2B553363AF18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.0\\\\(1\\\\)ey1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9E7D5CC-521E-4B2A-B6DB-D2A49D31DE4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.0\\\\(1\\\\)ey2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10D75DC6-D7B1-46D2-ABEF-97D908992FF1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.1\\\\(3\\\\)svs:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46EC35AA-4BD3-4FBB-878D-3313D37D9AAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.1\\\\(3\\\\)svt1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66BD52DF-E396-415D-B46E-A8814579A01F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(1\\\\)ey:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D601E90-6F2A-4C66-97A2-152031C88DB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3A156FE-590E-49DB-819D-4103D629829D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1F6C767-042C-4277-90F4-F81D9AFFF227\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D33DB919-4F82-43C6-830A-A9D4FC043B42\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72782F95-948D-489B-A19A-9DAB825DFE4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F904CD0-8609-47F7-988C-613DE26BDBB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC3A39FE-69F6-4BB9-A9CE-D516A3802538\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e5a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB9B7058-3467-4CCE-B9A4-71CF8143FEC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e5b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90447919-CC40-4CA5-A488-2FCF0F25ABE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEF74559-F418-48EA-9CA7-A9574CAFC97E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5A1ADB8-DF62-4CB6-8075-2F0956BB0126\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e7b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2C787A4-4AF4-49F1-AA10-F5CF51AE17AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB0F2B2A-F273-4166-826F-88B54A480BB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"194D54FC-F399-4C86-AE04-FB3FD828DDA0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)e10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1C85E0E-A920-4501-AC23-0F7534CF88EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)ea:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"50CB7858-C857-41E2-9E5D-9368EEC2825E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)ea1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10438F4B-281D-4C2F-B4C3-DC3D47B0033A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)ea2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"681E360E-2287-4BE7-8228-77C235DFA901\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)ea3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81800178-449A-4B61-9611-5FB2FC4DBC75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)eb:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7316ED4-FABD-49E0-AA21-394D327435F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)eb1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24A56EF3-4E88-4220-846A-A9BE1E496311\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2\\\\)eb2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAA77FEC-51CE-4D0B-9D1F-7BF1A28D30A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2a\\\\)e2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DDB0B25-95E0-4796-A56F-1A59EF7EA283\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(2b\\\\)e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0687FD87-BAED-4776-9B94-3C9EA7CCE79A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(3\\\\)e1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"757000B2-A8EB-464A-9A2D-EC4D920A0569\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(3\\\\)e2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"102BF855-ED1C-4D26-85D9-74B2BE0E9CF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(3\\\\)e3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B42618DF-F118-41A7-96E5-24C229DA020E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(3\\\\)e4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26F6FC68-BF4A-4511-8B46-A93C81E349B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(3\\\\)e5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7582DA8C-2360-4E8C-90F8-6194F269CD1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(3\\\\)ea:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9D6FBCE-F1F0-437B-A9B0-57F717C974F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)e5a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B5BDAB63-EA0E-486D-B146-7E0060F70066\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBF92BEC-AA46-46DF-8C1E-956F3E506E69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C226FE9-61A0-4873-B277-1B8ADB397B32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D9C3A73-E4E1-4C0F-86D4-B796069E4EE7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD5BD905-75C3-47AE-8D19-6225BD808B37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56DE452A-6852-4879-9187-8A152E6E260E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A6367C8-C9D7-4965-BD9C-1DD4A2FCE2D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD3047E4-BCC3-41A7-9DCD-15C25D14EC44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7785E177-C04E-4170-9C35-B4259D14EA85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CAE727E-E552-4222-8FF0-6146A813BDEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7850295-C728-4448-ABA7-D01397DBBE5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea9a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C104A47-53EE-47FC-BAE5-21925BEE98E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ea10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F09A26FF-6A8F-4D73-B3E8-0333F994D1B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ec1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65589A68-58A4-4BD4-8A26-C629AE610953\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)ec2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8A64C8F-6380-47CA-8116-E3438B953F84\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(4\\\\)jaz:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BAE38B2F-F6AB-44E2-89BE-F71796FE1942\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(5\\\\)e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F112DE64-0042-4FB9-945D-3107468193E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(5\\\\)e1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E027FB12-862F-413E-AA2B-4BBD90AE3650\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(5\\\\)e2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD28874B-148A-4299-9AA1-67A550B25F8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(5\\\\)e2b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45B80CBC-961F-4EE8-A998-C0A827151EDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(5\\\\)e2c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7131776-5DEB-4B96-8483-B81B538E24FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(5\\\\)ea:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE991877-18E0-4374-A441-C2316085CCA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(5a\\\\)e1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"757EB1A1-4764-4108-9AB1-F33CF9CEE574\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(6\\\\)e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"199DCF1B-8A1E-47CC-87A6-64E6F21D8886\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(6\\\\)e0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5B78669-3B28-4F1D-993D-85282A7D0E96\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(6\\\\)e0c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD05109E-1183-419D-96A1-9CD5EA5ECC3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(6\\\\)e1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3C73A3A-4B84-476F-AC3C-81DCB527E29A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(6\\\\)e1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7551128E-9E23-4C42-A681-6BE64D284C93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(6\\\\)e1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EB7BFE1-06ED-4B45-8B4F-2B309B8D6342\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(7\\\\)e0b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A4C12918-E5BB-465E-9DA4-06B7351DD805\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(7a\\\\)e0b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1374E243-4EC2-4A81-991C-B5705135CAD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.2\\\\(7b\\\\)e0b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6ECA6101-94BA-4209-8243-A56AF02963EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71493AA2-49E9-4FF5-AC29-DC2426973EC6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85F96295-2E72-4C23-B973-791B4A2B63F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8555124-BAFA-45D4-8208-ED1172D55F53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A313DD0B-C9A9-4731-A486-EE1BCBA3B1F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04B9D9B5-807F-494B-9ED2-7F4BDB32432A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6089D71A-8D46-4819-80E9-8A29BCA47EDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21678FDA-D2B4-4041-A52D-C7AA562FD086\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6EB0CFF-88F5-4193-8896-B3E4BA8D1AD7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ja12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E532352-99A6-4E45-B0E7-7F04DA411820\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jaa:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3BD12E4-2ADA-4E3D-A12D-FF0E1031D677\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jax:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AAC643B-AA58-42EA-A777-52FCF6065F9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jax1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CFB57C3-6CDF-46D1-858D-D5234956653D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jax2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"330125E6-3645-40B5-8E64-009B622090B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jb:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02D874DF-54A1-47C7-B3D9-A9CE41A42418\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1485E3A5-A586-408A-8325-7572779DD0E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2244E538-6B35-44E0-B93E-60B773745A99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9DB6B2A-19D2-4684-B07F-5D42EC850A8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDC1C381-4795-4992-BE3C-9615E005DE46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80188F84-30DE-46AC-8E0C-984126B77CC6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DECBF0A9-D84F-40A2-AC61-A9C59C819787\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb6a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9F129CF-FB92-49E9-BD86-90DDB8218FF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jbb8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C288D58-F765-4403-BF18-CC0A62B1AA60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4CF8146-FBF4-48F9-8BF0-61ACB2B3524E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27357CD7-3E9E-4EF2-A5D4-A6BC44952FD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4246ACD7-DBCF-4CE6-B9B8-D44AAB2DEC8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1046E19B-DB53-418A-BFEC-5CD4492E6626\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0062D992-D990-4EC9-BABD-2EFFF84254D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC81B74C-4F63-46E8-ACF4-EB707853580A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3C779C9-3B83-4B26-8942-B8475FB3B5D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02ACA99D-5784-4F5F-AB83-F55DF8774E94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFFB9F99-8751-442B-9419-C2AB522D2ADC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jc14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E33FD88-8183-40EF-97A1-2766A4BBFBE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34D7D48C-9FA1-45DB-B206-437E8ECBF53D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3626B216-43E8-4E60-96E5-7CAA0CB67F65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9B59D8B-E71A-4671-BA0B-00E56498E280\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"956C0089-E5AE-4289-B6D7-A8AB3C39AAA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"333468BC-41F0-46ED-9561-D7D2CE6AC267\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09DBAA17-61D7-4EE4-A70D-A7200DF36C58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF17EADC-5812-47FD-A243-287837CEC1E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5733BCBA-B3CE-4B18-9F7B-51CE17AAEF89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE8CF99C-B097-4964-B07C-FBB28EB37681\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79DC64FF-E6F4-4FEE-87A2-14DF0DA55B23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBA4B81F-7FCA-4666-8602-F6C77A4673E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2403659-B7AD-40CE-AF88-FE2BEF0929E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D1F53B1-E9FA-4480-8314-C531073B25CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"498030A3-0AFF-4D74-98D6-74C9447E5B79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDCBDB71-59D7-481E-84FF-8772930F857B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)je:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2955A319-04AC-4D0C-80B7-0C90503908C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0EF13B6-A743-41D1-BB31-F17C3586C8AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B4F7A75-1D0B-4F55-868C-99DBB67AE1AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37875B18-434B-4218-BAAF-2B593E188180\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26BAC234-D00C-4407-A1FE-E45A14D1BDAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C42E2869-F179-49B7-A4E8-0F4E8EA953CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A58711A-F8C9-4F25-97D7-AE8AE64F3912\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF4E7B19-75DF-4811-BEE9-28E7B15ED6F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE3ECC04-345F-4DAE-98F7-04E082BAEC3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A919122-DE62-4032-80DF-F77C1D80B387\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C5B0248-7C59-49F7-A1BC-FE6F5A8E535B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68958043-1212-42AF-A205-DB731ED55114\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84AE6EB6-EF3F-4DE2-ABEC-71F9010BFF0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf12i:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD6F56B5-BE84-434D-AEC8-EB0764A832FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06216CEE-F15D-4B31-A5A3-B2C226E2D25B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"746D8C22-4A3E-4EDB-96A1-923EFF2FD5C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jg1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BB02DEB-81D4-4A05-BDD5-3B8BC7184159\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jh:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B18C3383-28B0-435E-AF08-9739DADAE4E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jh1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08C9CA39-3515-4226-8453-0B5FC62546D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ji1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19AAE85B-A2E3-4758-9DAF-B4BD7C667DA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ji3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1658FFCF-7433-4AFB-9D59-BD6CC14A4D28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ji4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D2CA6116-2C6B-431B-BA88-63B180A00DA0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ji5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2377350-7B69-4C49-889A-D63A3E4C1002\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)ji6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2913C352-E21F-4ECE-8A13-BA21CC00D02E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jj:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AD90F4A-2A86-4A98-A157-D93C382717A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jj1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8FB2D76-9BE1-4C39-A3B0-BD6F45E20E11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1739E9AD-154D-40C2-A761-F7133BC06C3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA700809-C25D-49F8-B930-7459F8AE9DCE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk1t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AEB7B3E-4E91-477F-BD62-9A28578CCA80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58C5D255-C0FE-47E6-A920-3539306F9845\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk2a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C8DF3B4-A424-4B70-9116-28E2C4DFB776\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4677B840-6636-4D8C-9E1C-47FEB8F3116A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"917D5477-E47E-4A01-979A-C9A0993BE34B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32E6CCE7-88BB-4F4F-9253-EC67B5076767\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2EBD0947-656E-4CB0-9B4F-1A1F7AA360C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5D6C6EE-CFD9-49A9-8784-498560847737\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5187A9D2-A057-40E7-84E1-89BE32AFA95C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FFEE60A6-9E75-4B20-A06D-411E774511B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1451BB33-6BE0-4F4A-A193-14E13DECEE20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F0FC09E-8C60-4EAC-B729-3BE3524E6F08\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD355DC3-51F1-4CEA-98B1-E08EEE03BFD0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49B4A0C4-B0CF-4040-9EB0-1529BCAD0DF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4071E320-789E-4E1D-982B-C265F4228FEA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jn15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EC38DE9-5D5D-452A-AC42-C1D24418FDB4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnb:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BC3CD43-F30A-484B-9285-D925C1262212\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnb1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F807A36A-9363-40F1-9B20-E5C4D503EB1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnb2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5200C1CD-DEAB-44FD-970D-098F3E01F36B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnb3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8E71841-512D-483C-A911-86EA745AC00E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnb4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBB655C5-2D7B-4ED5-89D6-4ED613CF3934\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnb5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BAE556AB-093C-4992-8F5B-F240526AAA64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnb6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BA0BCD1-4E75-4F39-B960-4B6B1B357442\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnc:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F17F3285-80E8-4BE5-8704-3379CF326601\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9669DF61-DDC5-498D-906A-494D56BAE450\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnc2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00B0502B-3363-4F3C-A147-8888B894635B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnc3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"689327CA-F302-49FC-9365-F09E4A60E8FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnc4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"571ECF0D-06C6-4371-891C-FB68A3093F53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnd:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A38CF1F-37D9-4CBD-8B98-C24637FF7F56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnd1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0886F6DC-C590-48A0-BE27-6CD778EB37FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnd2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8552242D-0A93-4841-83F9-EA4D7F58938E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnd3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D0667D1-B4EC-4FF0-AC5D-9C1B04D84099\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F45D0EFD-784A-4CDB-8FDB-41F6869B4735\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnp1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"942CC01D-ED6E-4731-A61B-75CDF219F760\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnp3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59CA018E-5160-40AE-953D-9559F23D2EAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpb:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBA595EF-8718-4477-8EEC-EA948C14F091\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpb1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CDCADB1-EA01-41AF-9D96-A6EDE42D7A9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13763901-2D7B-485D-A957-E30587BCEB88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B213166-77E2-4E13-8769-FA8AF6EEC33A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A3C0371-223A-433C-B8A3-C24A499EB82F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A066A001-830B-4407-A5CD-AB99059C190E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83B45095-526D-4BC5-A16B-6B5741F07FD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpd:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4A9F7DF-BB18-46FC-B471-3FC41F4CCD01\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.3.0xo:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"930678B3-1527-4967-9D8F-27FC0DA060AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.3.1xo:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A34268-7618-48D2-8872-27B5B624543B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.3.2xo:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2017A75-CC29-4161-85CB-7A531E5ABB3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.6.5be:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0AD00E6-A155-4CCB-B329-7B536BEBC976\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.7.4e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"355F4945-4FFA-469F-A799-815F371C637B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.7.5e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1432B59F-5A66-4A5A-B3F7-E297700ED9C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"119A964D-ABC8-424D-8097-85B832A833BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.9.1d:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AF5214D-9257-498F-A3EB-C4EC18E2FEB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB6BD18B-B9BD-452F-986E-16A6668E46B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.10.1e:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADED0D82-2A4D-4235-BFAC-5EE2D862B652\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E91F8704-6DAD-474A-84EA-04E4AF7BB9B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"314C7763-A64D-4023-9F3F-9A821AE4151F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.11.1c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC1C85DD-69CC-4AA8-B219-651D57FC3506\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.11.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB26AE0F-85D8-4EAB-B9BD-457DD81FF0FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.11.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B53E377A-0296-4D7A-B97C-576B0026543D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C98DED36-D4B5-48D6-964E-EEEE97936700\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.1c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8BEFEDA-B01A-480B-B03D-7ED5D08E4B67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9027A528-2588-4C06-810B-5BB313FE4323\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5019B59-508E-40B0-9C92-2C26F58E2FBE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.2s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1986DB1F-AD0A-42FE-8EC8-F18BA1AD4F99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.2t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C6FB4DC-814D-49D2-BBE2-3861AE985A1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5750264-2990-4942-85F4-DB9746C5CA2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.3s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9173AD6-6658-4267-AAA7-D50D0B657528\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.12.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F02EE9D-45B1-43D6-B05D-6FF19472216B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:17.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E306B09C-CB48-4067-B60C-5F738555EEAC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:17.1.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FF0DD16-D76A-45EA-B01A-20C71AEFA3B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:17.1.1t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BDD0CEC-4A19-438D-B2A1-8664A1D8F3C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:17.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89369318-2E83-489F-B872-5F2E247BBF8F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:17.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B7EE7C7-D6C1-4C35-8C80-EAF3FC7E7EFA\"}]}]}],\"references\":[{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68\",\"source\":\"ykramarz@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68\", \"name\": \"20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_refsource_CISCO\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T16:11:16.883Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-1392\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-08T20:19:39.666026Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-08T20:39:18.597Z\"}}], \"cna\": {\"title\": \"Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability\", \"source\": {\"defect\": [[\"CSCvu58224\"]], \"advisory\": \"cisco-sa-XE-SAP-OPLbze68\", \"discovery\": \"INTERNAL\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco IOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.\"}], \"datePublic\": \"2021-03-24T00:00:00\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68\", \"name\": \"20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_refsource_CISCO\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-522\", \"description\": \"CWE-522\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2021-03-24T20:07:19\"}, \"x_legacyV4Record\": {\"impact\": {\"cvss\": {\"version\": \"3.0\", \"baseScore\": \"7.8\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\"}}, \"source\": {\"defect\": [[\"CSCvu58224\"]], \"advisory\": \"cisco-sa-XE-SAP-OPLbze68\", \"discovery\": \"INTERNAL\"}, \"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"n/a\"}]}, \"product_name\": \"Cisco IOS\"}]}, \"vendor_name\": \"Cisco\"}]}}, \"exploit\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.\"}], \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68\", \"name\": \"20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability\", \"refsource\": \"CISCO\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"CWE-522\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2021-1392\", \"STATE\": \"PUBLIC\", \"TITLE\": \"Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability\", \"ASSIGNER\": \"psirt@cisco.com\", \"DATE_PUBLIC\": \"2021-03-24T16:00:00\"}}}}",
"cveMetadata": "{\"cveId\": \"CVE-2021-1392\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-08T23:33:05.994Z\", \"dateReserved\": \"2020-11-13T00:00:00\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2021-03-24T20:07:19.109626Z\", \"assignerShortName\": \"cisco\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
ghsa-xjw8-2g7c-qm56
Vulnerability from github
Published
2022-05-24 17:45
Modified
2022-05-24 17:45
Details
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
{
"affected": [],
"aliases": [
"CVE-2021-1392"
],
"database_specific": {
"cwe_ids": [
"CWE-522"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-03-24T20:15:00Z",
"severity": "HIGH"
},
"details": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.",
"id": "GHSA-xjw8-2g7c-qm56",
"modified": "2022-05-24T17:45:12Z",
"published": "2022-05-24T17:45:12Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-1392"
},
{
"type": "WEB",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
}
],
"schema_version": "1.4.0",
"severity": []
}
cisco-sa-xe-sap-oplbze68
Vulnerability from csaf_cisco
Published
2021-03-24 16:00
Modified
2021-03-24 16:00
Summary
Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability
Notes
Summary
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user.
This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is part of the March 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: March 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication ["https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74408"].
Vulnerable Products
This vulnerability affects Cisco devices if they are running a vulnerable release of Cisco IOS or Cisco IOS XE Software and have CIP enabled.
CIP is not enabled by default.
For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory.
Determine Whether CIP Is Enabled
To determine whether CIP is enabled on a device, issue the show cip status command and check the State: value. The following example shows that CIP is enabled for VLAN 1:
Router> show cip status
State : Enabled
Vlan : 1
If the command returns no output or returns an error message, as shown in the following example, the device is not affected by this vulnerability:
Router> show cip status
^
% Invalid input detected at '^' marker.
Products Confirmed Not Vulnerable
Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by this vulnerability.
Cisco has confirmed that this vulnerability does not affect the following Cisco products:
IOS XR Software
NX-OS Software
Workarounds
There are no workarounds that address this vulnerability. However, mitigations are available:
Disabling the CIP feature eliminates the attack vector for this vulnerability and may be a suitable mitigation until affected devices can be upgraded. To disable the CIP feature, use the no cip enable command in the interface configuration mode for the VLAN that CIP is currently enabled on.
For devices that are configured with TACACS+ authentication, authorization, and accounting (AAA) command authorization, use this feature to give non-administrative users access to the commands that they require and deny access to all other commands.
While these mitigations have been deployed and were proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.
Fixed Software
Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:
https://www.cisco.com/c/en/us/products/end-user-license-agreement.html ["https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"]
Additionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.
When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Customers Without Service Contracts
Customers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"]
Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.
Cisco IOS and IOS XE Software
To help customers determine their exposure to vulnerabilities in Cisco IOS and IOS XE Software, Cisco provides the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] to identify any Cisco Security Advisories that impact a specific software release and the earliest release that fixes the vulnerabilities described in each advisory (“First Fixed”). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories identified (“Combined First Fixed”).
Customers can use the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] to search advisories in the following ways:
Choose the software and one or more releases
Upload a .txt file that includes a list of specific releases
Enter the output of the show version command
After initiating a search, customers can customize the search to include all Cisco Security Advisories, a specific advisory, or all advisories in the most recent bundled publication.
Customers can also use the following form to determine whether a release is affected by any Cisco Security Advisory by entering a Cisco IOS or IOS XE Software release—for example, 15.1(4)M2 or 3.13.8S:
By default, the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] includes results only for vulnerabilities that have a Critical or High Security Impact Rating (SIR). To include results for Medium SIR vulnerabilities, customers can use the Cisco Software Checker on Cisco.com and check the Medium check box in the drop-down list under Impact Rating when customizing a search.
For a mapping of Cisco IOS XE Software releases to Cisco IOS Software releases, refer to the Cisco IOS XE 2 Release Notes ["https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032"], Cisco IOS XE 3S Release Notes ["https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754"], or Cisco IOS XE 3SG Release Notes ["https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252"], depending on the Cisco IOS XE Software release.
Vulnerability Policy
To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.
Exploitation and Public Announcements
The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.
Source
This vulnerability was found during internal security testing by X.B. of the Cisco Advanced Security Initiatives Group (ASIG).
Legal Disclaimer
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.
{
"document": {
"acknowledgments": [
{
"summary": "This vulnerability was found during internal security testing by X.B. of the Cisco Advanced Security Initiatives Group (ASIG)."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"notes": [
{
"category": "summary",
"text": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user.\r\n\r\nThis vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\n\r\n\r\nThis advisory is part of the March 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: March 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [\"https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74408\"].",
"title": "Summary"
},
{
"category": "general",
"text": "This vulnerability affects Cisco devices if they are running a vulnerable release of Cisco IOS or Cisco IOS XE Software and have CIP enabled.\r\n\r\nCIP is not enabled by default.\r\n\r\nFor information about which Cisco software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.\r\n Determine Whether CIP Is Enabled\r\nTo determine whether CIP is enabled on a device, issue the show cip status command and check the State: value. The following example shows that CIP is enabled for VLAN 1:\r\n\r\n\r\nRouter\u003e show cip status\r\nState : Enabled\r\nVlan : 1\r\n\r\nIf the command returns no output or returns an error message, as shown in the following example, the device is not affected by this vulnerability:\r\n\r\n\r\nRouter\u003e show cip status\r\n ^\r\n% Invalid input detected at \u0027^\u0027 marker.",
"title": "Vulnerable Products"
},
{
"category": "general",
"text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by this vulnerability.\r\n\r\nCisco has confirmed that this vulnerability does not affect the following Cisco products:\r\n\r\nIOS XR Software\r\nNX-OS Software",
"title": "Products Confirmed Not Vulnerable"
},
{
"category": "general",
"text": "There are no workarounds that address this vulnerability. However, mitigations are available:\r\n\r\nDisabling the CIP feature eliminates the attack vector for this vulnerability and may be a suitable mitigation until affected devices can be upgraded. To disable the CIP feature, use the no cip enable command in the interface configuration mode for the VLAN that CIP is currently enabled on.\r\nFor devices that are configured with TACACS+ authentication, authorization, and accounting (AAA) command authorization, use this feature to give non-administrative users access to the commands that they require and deny access to all other commands.\r\n\r\nWhile these mitigations have been deployed and were proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.",
"title": "Workarounds"
},
{
"category": "general",
"text": "Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:\r\nhttps://www.cisco.com/c/en/us/products/end-user-license-agreement.html [\"https://www.cisco.com/c/en/us/products/end-user-license-agreement.html\"]\r\n\r\nAdditionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.\r\n\r\nWhen considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.\r\n Customers Without Service Contracts\r\nCustomers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"]\r\n\r\nCustomers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.\r\n Cisco IOS and IOS XE Software\r\nTo help customers determine their exposure to vulnerabilities in Cisco IOS and IOS XE Software, Cisco provides the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] to identify any Cisco Security Advisories that impact a specific software release and the earliest release that fixes the vulnerabilities described in each advisory (\u201cFirst Fixed\u201d). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories identified (\u201cCombined First Fixed\u201d).\r\n\r\nCustomers can use the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] to search advisories in the following ways:\r\n\r\nChoose the software and one or more releases\r\nUpload a .txt file that includes a list of specific releases\r\nEnter the output of the show version command\r\n\r\nAfter initiating a search, customers can customize the search to include all Cisco Security Advisories, a specific advisory, or all advisories in the most recent bundled publication.\r\n\r\nCustomers can also use the following form to determine whether a release is affected by any Cisco Security Advisory by entering a Cisco IOS or IOS XE Software release\u2014for example, 15.1(4)M2 or 3.13.8S:\r\n\r\n\r\n\r\nBy default, the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] includes results only for vulnerabilities that have a Critical or High Security Impact Rating (SIR). To include results for Medium SIR vulnerabilities, customers can use the Cisco Software Checker on Cisco.com and check the Medium check box in the drop-down list under Impact Rating when customizing a search.\r\n\r\nFor a mapping of Cisco IOS XE Software releases to Cisco IOS Software releases, refer to the Cisco IOS XE 2 Release Notes [\"https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032\"], Cisco IOS XE 3S Release Notes [\"https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754\"], or Cisco IOS XE 3SG Release Notes [\"https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252\"], depending on the Cisco IOS XE Software release.",
"title": "Fixed Software"
},
{
"category": "general",
"text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
"title": "Vulnerability Policy"
},
{
"category": "general",
"text": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.",
"title": "Exploitation and Public Announcements"
},
{
"category": "general",
"text": "This vulnerability was found during internal security testing by X.B. of the Cisco Advanced Security Initiatives Group (ASIG).",
"title": "Source"
},
{
"category": "legal_disclaimer",
"text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
"title": "Legal Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@cisco.com",
"issuing_authority": "Cisco PSIRT",
"name": "Cisco",
"namespace": "https://wwww.cisco.com"
},
"references": [
{
"category": "self",
"summary": "Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
},
{
"category": "external",
"summary": "Cisco Event Response: March 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication",
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74408"
},
{
"category": "external",
"summary": "Cisco Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html",
"url": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"
},
{
"category": "external",
"summary": "considering software upgrades",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Security Advisories page",
"url": "https://www.cisco.com/go/psirt"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html",
"url": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Software Checker",
"url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 2 Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 3S Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 3SG Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252"
}
],
"title": "Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"tracking": {
"current_release_date": "2021-03-24T16:00:00+00:00",
"generator": {
"date": "2024-05-10T23:01:24+00:00",
"engine": {
"name": "TVCE"
}
},
"id": "cisco-sa-XE-SAP-OPLbze68",
"initial_release_date": "2021-03-24T16:00:00+00:00",
"revision_history": [
{
"date": "2021-03-17T16:20:13+00:00",
"number": "1.0.0",
"summary": "Initial public release."
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "15.0(1)EY",
"product": {
"name": "15.0(1)EY",
"product_id": "CSAFPID-104376"
}
},
{
"category": "service_pack",
"name": "15.0(1)EY1",
"product": {
"name": "15.0(1)EY1",
"product_id": "CSAFPID-115969"
}
},
{
"category": "service_pack",
"name": "15.0(1)EY2",
"product": {
"name": "15.0(1)EY2",
"product_id": "CSAFPID-187269"
}
}
],
"category": "product_version",
"name": "15.0EY"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.0(2)EA",
"product": {
"name": "15.0(2)EA",
"product_id": "CSAFPID-117282"
}
},
{
"category": "service_pack",
"name": "15.0(2)EA1",
"product": {
"name": "15.0(2)EA1",
"product_id": "CSAFPID-193033"
}
}
],
"category": "product_version",
"name": "15.0EA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(2)E",
"product": {
"name": "15.2(2)E",
"product_id": "CSAFPID-187057"
}
},
{
"category": "service_pack",
"name": "15.2(2)E1",
"product": {
"name": "15.2(2)E1",
"product_id": "CSAFPID-201074"
}
},
{
"category": "service_pack",
"name": "15.2(2b)E",
"product": {
"name": "15.2(2b)E",
"product_id": "CSAFPID-204102"
}
},
{
"category": "service_pack",
"name": "15.2(3)E1",
"product": {
"name": "15.2(3)E1",
"product_id": "CSAFPID-204186"
}
},
{
"category": "service_pack",
"name": "15.2(2)E2",
"product": {
"name": "15.2(2)E2",
"product_id": "CSAFPID-204228"
}
},
{
"category": "service_pack",
"name": "15.2(2)E3",
"product": {
"name": "15.2(2)E3",
"product_id": "CSAFPID-205672"
}
},
{
"category": "service_pack",
"name": "15.2(2a)E2",
"product": {
"name": "15.2(2a)E2",
"product_id": "CSAFPID-209045"
}
},
{
"category": "service_pack",
"name": "15.2(3)E2",
"product": {
"name": "15.2(3)E2",
"product_id": "CSAFPID-209046"
}
},
{
"category": "service_pack",
"name": "15.2(3)E3",
"product": {
"name": "15.2(3)E3",
"product_id": "CSAFPID-209358"
}
},
{
"category": "service_pack",
"name": "15.2(2)E4",
"product": {
"name": "15.2(2)E4",
"product_id": "CSAFPID-210766"
}
},
{
"category": "service_pack",
"name": "15.2(2)E5",
"product": {
"name": "15.2(2)E5",
"product_id": "CSAFPID-211296"
}
},
{
"category": "service_pack",
"name": "15.2(3)E4",
"product": {
"name": "15.2(3)E4",
"product_id": "CSAFPID-214078"
}
},
{
"category": "service_pack",
"name": "15.2(5)E",
"product": {
"name": "15.2(5)E",
"product_id": "CSAFPID-214556"
}
},
{
"category": "service_pack",
"name": "15.2(2)E6",
"product": {
"name": "15.2(2)E6",
"product_id": "CSAFPID-218891"
}
},
{
"category": "service_pack",
"name": "15.2(5)E1",
"product": {
"name": "15.2(5)E1",
"product_id": "CSAFPID-220441"
}
},
{
"category": "service_pack",
"name": "15.2(2)E5a",
"product": {
"name": "15.2(2)E5a",
"product_id": "CSAFPID-221033"
}
},
{
"category": "service_pack",
"name": "15.2(2)E5b",
"product": {
"name": "15.2(2)E5b",
"product_id": "CSAFPID-222436"
}
},
{
"category": "service_pack",
"name": "15.2(5a)E1",
"product": {
"name": "15.2(5a)E1",
"product_id": "CSAFPID-223143"
}
},
{
"category": "service_pack",
"name": "15.2(2)E7",
"product": {
"name": "15.2(2)E7",
"product_id": "CSAFPID-224868"
}
},
{
"category": "service_pack",
"name": "15.2(5)E2",
"product": {
"name": "15.2(5)E2",
"product_id": "CSAFPID-225740"
}
},
{
"category": "service_pack",
"name": "15.2(6)E",
"product": {
"name": "15.2(6)E",
"product_id": "CSAFPID-227598"
}
},
{
"category": "service_pack",
"name": "15.2(5)E2c",
"product": {
"name": "15.2(5)E2c",
"product_id": "CSAFPID-228151"
}
},
{
"category": "service_pack",
"name": "15.2(2)E8",
"product": {
"name": "15.2(2)E8",
"product_id": "CSAFPID-230587"
}
},
{
"category": "service_pack",
"name": "15.2(6)E0a",
"product": {
"name": "15.2(6)E0a",
"product_id": "CSAFPID-230591"
}
},
{
"category": "service_pack",
"name": "15.2(6)E1",
"product": {
"name": "15.2(6)E1",
"product_id": "CSAFPID-230592"
}
},
{
"category": "service_pack",
"name": "15.2(6)E0c",
"product": {
"name": "15.2(6)E0c",
"product_id": "CSAFPID-231245"
}
},
{
"category": "service_pack",
"name": "15.2(2)E9",
"product": {
"name": "15.2(2)E9",
"product_id": "CSAFPID-232765"
}
},
{
"category": "service_pack",
"name": "15.2(6)E1a",
"product": {
"name": "15.2(6)E1a",
"product_id": "CSAFPID-238999"
}
},
{
"category": "service_pack",
"name": "15.2(6)E1s",
"product": {
"name": "15.2(6)E1s",
"product_id": "CSAFPID-240186"
}
},
{
"category": "service_pack",
"name": "15.2(2)E10",
"product": {
"name": "15.2(2)E10",
"product_id": "CSAFPID-244911"
}
},
{
"category": "service_pack",
"name": "15.2(7)E0b",
"product": {
"name": "15.2(7)E0b",
"product_id": "CSAFPID-260993"
}
},
{
"category": "service_pack",
"name": "15.2(7a)E0b",
"product": {
"name": "15.2(7a)E0b",
"product_id": "CSAFPID-271140"
}
},
{
"category": "service_pack",
"name": "15.2(7b)E0b",
"product": {
"name": "15.2(7b)E0b",
"product_id": "CSAFPID-276903"
}
}
],
"category": "product_version",
"name": "15.2E"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(1)EY",
"product": {
"name": "15.2(1)EY",
"product_id": "CSAFPID-191928"
}
}
],
"category": "product_version",
"name": "15.2EY"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(4)JAZ",
"product": {
"name": "15.2(4)JAZ",
"product_id": "CSAFPID-195528"
}
}
],
"category": "product_version",
"name": "15.2JAZ"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(2)EB",
"product": {
"name": "15.2(2)EB",
"product_id": "CSAFPID-197462"
}
},
{
"category": "service_pack",
"name": "15.2(2)EB1",
"product": {
"name": "15.2(2)EB1",
"product_id": "CSAFPID-209839"
}
},
{
"category": "service_pack",
"name": "15.2(2)EB2",
"product": {
"name": "15.2(2)EB2",
"product_id": "CSAFPID-214218"
}
}
],
"category": "product_version",
"name": "15.2EB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(2)EA",
"product": {
"name": "15.2(2)EA",
"product_id": "CSAFPID-198063"
}
},
{
"category": "service_pack",
"name": "15.2(2)EA1",
"product": {
"name": "15.2(2)EA1",
"product_id": "CSAFPID-209049"
}
},
{
"category": "service_pack",
"name": "15.2(2)EA2",
"product": {
"name": "15.2(2)EA2",
"product_id": "CSAFPID-209050"
}
},
{
"category": "service_pack",
"name": "15.2(3)EA",
"product": {
"name": "15.2(3)EA",
"product_id": "CSAFPID-209051"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA",
"product": {
"name": "15.2(4)EA",
"product_id": "CSAFPID-210203"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA1",
"product": {
"name": "15.2(4)EA1",
"product_id": "CSAFPID-210958"
}
},
{
"category": "service_pack",
"name": "15.2(2)EA3",
"product": {
"name": "15.2(2)EA3",
"product_id": "CSAFPID-214217"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA3",
"product": {
"name": "15.2(4)EA3",
"product_id": "CSAFPID-214965"
}
},
{
"category": "service_pack",
"name": "15.2(5)EA",
"product": {
"name": "15.2(5)EA",
"product_id": "CSAFPID-220038"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA4",
"product": {
"name": "15.2(4)EA4",
"product_id": "CSAFPID-220460"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA2",
"product": {
"name": "15.2(4)EA2",
"product_id": "CSAFPID-220507"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA5",
"product": {
"name": "15.2(4)EA5",
"product_id": "CSAFPID-222419"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA6",
"product": {
"name": "15.2(4)EA6",
"product_id": "CSAFPID-228075"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA7",
"product": {
"name": "15.2(4)EA7",
"product_id": "CSAFPID-230992"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA8",
"product": {
"name": "15.2(4)EA8",
"product_id": "CSAFPID-241614"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA9",
"product": {
"name": "15.2(4)EA9",
"product_id": "CSAFPID-257830"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA9a",
"product": {
"name": "15.2(4)EA9a",
"product_id": "CSAFPID-274038"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA10",
"product": {
"name": "15.2(4)EA10",
"product_id": "CSAFPID-277353"
}
}
],
"category": "product_version",
"name": "15.2EA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JN",
"product": {
"name": "15.3(3)JN",
"product_id": "CSAFPID-200492"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN3",
"product": {
"name": "15.3(3)JN3",
"product_id": "CSAFPID-209086"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN4",
"product": {
"name": "15.3(3)JN4",
"product_id": "CSAFPID-209087"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN6",
"product": {
"name": "15.3(3)JN6",
"product_id": "CSAFPID-209930"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN7",
"product": {
"name": "15.3(3)JN7",
"product_id": "CSAFPID-209935"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN8",
"product": {
"name": "15.3(3)JN8",
"product_id": "CSAFPID-210410"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN9",
"product": {
"name": "15.3(3)JN9",
"product_id": "CSAFPID-213654"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN11",
"product": {
"name": "15.3(3)JN11",
"product_id": "CSAFPID-222537"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN13",
"product": {
"name": "15.3(3)JN13",
"product_id": "CSAFPID-230915"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN14",
"product": {
"name": "15.3(3)JN14",
"product_id": "CSAFPID-232122"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN15",
"product": {
"name": "15.3(3)JN15",
"product_id": "CSAFPID-239279"
}
}
],
"category": "product_version",
"name": "15.3JN"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JA1",
"product": {
"name": "15.3(3)JA1",
"product_id": "CSAFPID-204826"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA4",
"product": {
"name": "15.3(3)JA4",
"product_id": "CSAFPID-209067"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA5",
"product": {
"name": "15.3(3)JA5",
"product_id": "CSAFPID-209068"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA6",
"product": {
"name": "15.3(3)JA6",
"product_id": "CSAFPID-210937"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA7",
"product": {
"name": "15.3(3)JA7",
"product_id": "CSAFPID-214382"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA8",
"product": {
"name": "15.3(3)JA8",
"product_id": "CSAFPID-214764"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA10",
"product": {
"name": "15.3(3)JA10",
"product_id": "CSAFPID-217779"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA11",
"product": {
"name": "15.3(3)JA11",
"product_id": "CSAFPID-226174"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA12",
"product": {
"name": "15.3(3)JA12",
"product_id": "CSAFPID-230712"
}
}
],
"category": "product_version",
"name": "15.3JA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JAA",
"product": {
"name": "15.3(3)JAA",
"product_id": "CSAFPID-204103"
}
}
],
"category": "product_version",
"name": "15.3JAA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JB",
"product": {
"name": "15.3(3)JB",
"product_id": "CSAFPID-209077"
}
}
],
"category": "product_version",
"name": "15.3JB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JNB",
"product": {
"name": "15.3(3)JNB",
"product_id": "CSAFPID-205723"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB1",
"product": {
"name": "15.3(3)JNB1",
"product_id": "CSAFPID-209089"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB2",
"product": {
"name": "15.3(3)JNB2",
"product_id": "CSAFPID-209090"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB3",
"product": {
"name": "15.3(3)JNB3",
"product_id": "CSAFPID-210411"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB4",
"product": {
"name": "15.3(3)JNB4",
"product_id": "CSAFPID-213655"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB6",
"product": {
"name": "15.3(3)JNB6",
"product_id": "CSAFPID-224738"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB5",
"product": {
"name": "15.3(3)JNB5",
"product_id": "CSAFPID-230606"
}
}
],
"category": "product_version",
"name": "15.3JNB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JAX",
"product": {
"name": "15.3(3)JAX",
"product_id": "CSAFPID-209073"
}
},
{
"category": "service_pack",
"name": "15.3(3)JAX1",
"product": {
"name": "15.3(3)JAX1",
"product_id": "CSAFPID-209074"
}
},
{
"category": "service_pack",
"name": "15.3(3)JAX2",
"product": {
"name": "15.3(3)JAX2",
"product_id": "CSAFPID-209075"
}
}
],
"category": "product_version",
"name": "15.3JAX"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JBB",
"product": {
"name": "15.3(3)JBB",
"product_id": "CSAFPID-209080"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB1",
"product": {
"name": "15.3(3)JBB1",
"product_id": "CSAFPID-209081"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB2",
"product": {
"name": "15.3(3)JBB2",
"product_id": "CSAFPID-209419"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB4",
"product": {
"name": "15.3(3)JBB4",
"product_id": "CSAFPID-210189"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB5",
"product": {
"name": "15.3(3)JBB5",
"product_id": "CSAFPID-210262"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB6",
"product": {
"name": "15.3(3)JBB6",
"product_id": "CSAFPID-210491"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB8",
"product": {
"name": "15.3(3)JBB8",
"product_id": "CSAFPID-212266"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB6a",
"product": {
"name": "15.3(3)JBB6a",
"product_id": "CSAFPID-213770"
}
}
],
"category": "product_version",
"name": "15.3JBB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JC",
"product": {
"name": "15.3(3)JC",
"product_id": "CSAFPID-209474"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC1",
"product": {
"name": "15.3(3)JC1",
"product_id": "CSAFPID-213089"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC2",
"product": {
"name": "15.3(3)JC2",
"product_id": "CSAFPID-216573"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC3",
"product": {
"name": "15.3(3)JC3",
"product_id": "CSAFPID-217803"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC4",
"product": {
"name": "15.3(3)JC4",
"product_id": "CSAFPID-220446"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC5",
"product": {
"name": "15.3(3)JC5",
"product_id": "CSAFPID-222258"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC6",
"product": {
"name": "15.3(3)JC6",
"product_id": "CSAFPID-224442"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC8",
"product": {
"name": "15.3(3)JC8",
"product_id": "CSAFPID-227791"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC9",
"product": {
"name": "15.3(3)JC9",
"product_id": "CSAFPID-230596"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC14",
"product": {
"name": "15.3(3)JC14",
"product_id": "CSAFPID-231017"
}
}
],
"category": "product_version",
"name": "15.3JC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JNC",
"product": {
"name": "15.3(3)JNC",
"product_id": "CSAFPID-210137"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC1",
"product": {
"name": "15.3(3)JNC1",
"product_id": "CSAFPID-212497"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC2",
"product": {
"name": "15.3(3)JNC2",
"product_id": "CSAFPID-216632"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC3",
"product": {
"name": "15.3(3)JNC3",
"product_id": "CSAFPID-222412"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC4",
"product": {
"name": "15.3(3)JNC4",
"product_id": "CSAFPID-225662"
}
}
],
"category": "product_version",
"name": "15.3JNC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JNP",
"product": {
"name": "15.3(3)JNP",
"product_id": "CSAFPID-211256"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNP1",
"product": {
"name": "15.3(3)JNP1",
"product_id": "CSAFPID-212686"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNP3",
"product": {
"name": "15.3(3)JNP3",
"product_id": "CSAFPID-220657"
}
}
],
"category": "product_version",
"name": "15.3JNP"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPB",
"product": {
"name": "15.3(3)JPB",
"product_id": "CSAFPID-213843"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPB1",
"product": {
"name": "15.3(3)JPB1",
"product_id": "CSAFPID-216277"
}
}
],
"category": "product_version",
"name": "15.3JPB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JD",
"product": {
"name": "15.3(3)JD",
"product_id": "CSAFPID-213954"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD2",
"product": {
"name": "15.3(3)JD2",
"product_id": "CSAFPID-222630"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD3",
"product": {
"name": "15.3(3)JD3",
"product_id": "CSAFPID-222716"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD4",
"product": {
"name": "15.3(3)JD4",
"product_id": "CSAFPID-225790"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD5",
"product": {
"name": "15.3(3)JD5",
"product_id": "CSAFPID-226172"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD6",
"product": {
"name": "15.3(3)JD6",
"product_id": "CSAFPID-227789"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD7",
"product": {
"name": "15.3(3)JD7",
"product_id": "CSAFPID-228955"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD8",
"product": {
"name": "15.3(3)JD8",
"product_id": "CSAFPID-230598"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD9",
"product": {
"name": "15.3(3)JD9",
"product_id": "CSAFPID-230824"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD11",
"product": {
"name": "15.3(3)JD11",
"product_id": "CSAFPID-231000"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD12",
"product": {
"name": "15.3(3)JD12",
"product_id": "CSAFPID-231001"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD13",
"product": {
"name": "15.3(3)JD13",
"product_id": "CSAFPID-232852"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD14",
"product": {
"name": "15.3(3)JD14",
"product_id": "CSAFPID-234115"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD16",
"product": {
"name": "15.3(3)JD16",
"product_id": "CSAFPID-239225"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD17",
"product": {
"name": "15.3(3)JD17",
"product_id": "CSAFPID-259985"
}
}
],
"category": "product_version",
"name": "15.3JD"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(4)EC1",
"product": {
"name": "15.2(4)EC1",
"product_id": "CSAFPID-220461"
}
},
{
"category": "service_pack",
"name": "15.2(4)EC2",
"product": {
"name": "15.2(4)EC2",
"product_id": "CSAFPID-223086"
}
}
],
"category": "product_version",
"name": "15.2EC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPC",
"product": {
"name": "15.3(3)JPC",
"product_id": "CSAFPID-217048"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC1",
"product": {
"name": "15.3(3)JPC1",
"product_id": "CSAFPID-220235"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC2",
"product": {
"name": "15.3(3)JPC2",
"product_id": "CSAFPID-220658"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC3",
"product": {
"name": "15.3(3)JPC3",
"product_id": "CSAFPID-225167"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC5",
"product": {
"name": "15.3(3)JPC5",
"product_id": "CSAFPID-230995"
}
}
],
"category": "product_version",
"name": "15.3JPC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JND",
"product": {
"name": "15.3(3)JND",
"product_id": "CSAFPID-217194"
}
},
{
"category": "service_pack",
"name": "15.3(3)JND1",
"product": {
"name": "15.3(3)JND1",
"product_id": "CSAFPID-222930"
}
},
{
"category": "service_pack",
"name": "15.3(3)JND2",
"product": {
"name": "15.3(3)JND2",
"product_id": "CSAFPID-226202"
}
},
{
"category": "service_pack",
"name": "15.3(3)JND3",
"product": {
"name": "15.3(3)JND3",
"product_id": "CSAFPID-227960"
}
}
],
"category": "product_version",
"name": "15.3JND"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JE",
"product": {
"name": "15.3(3)JE",
"product_id": "CSAFPID-218946"
}
}
],
"category": "product_version",
"name": "15.3JE"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPD",
"product": {
"name": "15.3(3)JPD",
"product_id": "CSAFPID-218948"
}
}
],
"category": "product_version",
"name": "15.3JPD"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JF",
"product": {
"name": "15.3(3)JF",
"product_id": "CSAFPID-227048"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF1",
"product": {
"name": "15.3(3)JF1",
"product_id": "CSAFPID-228956"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF2",
"product": {
"name": "15.3(3)JF2",
"product_id": "CSAFPID-230826"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF4",
"product": {
"name": "15.3(3)JF4",
"product_id": "CSAFPID-231679"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF5",
"product": {
"name": "15.3(3)JF5",
"product_id": "CSAFPID-232061"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF6",
"product": {
"name": "15.3(3)JF6",
"product_id": "CSAFPID-236205"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF7",
"product": {
"name": "15.3(3)JF7",
"product_id": "CSAFPID-239361"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF8",
"product": {
"name": "15.3(3)JF8",
"product_id": "CSAFPID-241765"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF9",
"product": {
"name": "15.3(3)JF9",
"product_id": "CSAFPID-243525"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF10",
"product": {
"name": "15.3(3)JF10",
"product_id": "CSAFPID-259238"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF11",
"product": {
"name": "15.3(3)JF11",
"product_id": "CSAFPID-269559"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF12",
"product": {
"name": "15.3(3)JF12",
"product_id": "CSAFPID-274817"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF13",
"product": {
"name": "15.3(3)JF13",
"product_id": "CSAFPID-277160"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF12i",
"product": {
"name": "15.3(3)JF12i",
"product_id": "CSAFPID-277199"
}
}
],
"category": "product_version",
"name": "15.3JF"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JG",
"product": {
"name": "15.3(3)JG",
"product_id": "CSAFPID-230603"
}
},
{
"category": "service_pack",
"name": "15.3(3)JG1",
"product": {
"name": "15.3(3)JG1",
"product_id": "CSAFPID-231796"
}
}
],
"category": "product_version",
"name": "15.3JG"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JH",
"product": {
"name": "15.3(3)JH",
"product_id": "CSAFPID-230605"
}
},
{
"category": "service_pack",
"name": "15.3(3)JH1",
"product": {
"name": "15.3(3)JH1",
"product_id": "CSAFPID-238504"
}
}
],
"category": "product_version",
"name": "15.3JH"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JI1",
"product": {
"name": "15.3(3)JI1",
"product_id": "CSAFPID-244913"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI3",
"product": {
"name": "15.3(3)JI3",
"product_id": "CSAFPID-252156"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI4",
"product": {
"name": "15.3(3)JI4",
"product_id": "CSAFPID-257209"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI5",
"product": {
"name": "15.3(3)JI5",
"product_id": "CSAFPID-260691"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI6",
"product": {
"name": "15.3(3)JI6",
"product_id": "CSAFPID-271284"
}
}
],
"category": "product_version",
"name": "15.3JI"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JK",
"product": {
"name": "15.3(3)JK",
"product_id": "CSAFPID-255002"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK1",
"product": {
"name": "15.3(3)JK1",
"product_id": "CSAFPID-273508"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK2",
"product": {
"name": "15.3(3)JK2",
"product_id": "CSAFPID-275470"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK3",
"product": {
"name": "15.3(3)JK3",
"product_id": "CSAFPID-277339"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK2a",
"product": {
"name": "15.3(3)JK2a",
"product_id": "CSAFPID-277341"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK1t",
"product": {
"name": "15.3(3)JK1t",
"product_id": "CSAFPID-277352"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK4",
"product": {
"name": "15.3(3)JK4",
"product_id": "CSAFPID-280552"
}
}
],
"category": "product_version",
"name": "15.3JK"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JJ",
"product": {
"name": "15.3(3)JJ",
"product_id": "CSAFPID-259869"
}
},
{
"category": "service_pack",
"name": "15.3(3)JJ1",
"product": {
"name": "15.3(3)JJ1",
"product_id": "CSAFPID-261487"
}
}
],
"category": "product_version",
"name": "15.3JJ"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPJ",
"product": {
"name": "15.3(3)JPJ",
"product_id": "CSAFPID-275845"
}
}
],
"category": "product_version",
"name": "15.3JPJ"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVS",
"product": {
"name": "15.1(3)SVS",
"product_id": "CSAFPID-277232"
}
}
],
"category": "product_version",
"name": "15.1SVS"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVT1",
"product": {
"name": "15.1(3)SVT1",
"product_id": "CSAFPID-280759"
}
}
],
"category": "product_version",
"name": "15.1SVT"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPN6",
"product": {
"name": "15.3(3)JPN6",
"product_id": "CSAFPID-302978"
}
}
],
"category": "product_version",
"name": "15.3JPN"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPR1",
"product": {
"name": "15.3(3)JPR1",
"product_id": "CSAFPID-300950"
}
}
],
"category": "product_version",
"name": "15.3JPR"
}
],
"category": "product_family",
"name": "IOS"
},
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "3.6.5bE",
"product": {
"name": "3.6.5bE",
"product_id": "CSAFPID-222435"
}
}
],
"category": "product_version",
"name": "3.6E"
},
{
"branches": [
{
"category": "service_pack",
"name": "3.7.4E",
"product": {
"name": "3.7.4E",
"product_id": "CSAFPID-217280"
}
},
{
"category": "service_pack",
"name": "3.7.5E",
"product": {
"name": "3.7.5E",
"product_id": "CSAFPID-220290"
}
}
],
"category": "product_version",
"name": "3.7E"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.9.1",
"product": {
"name": "16.9.1",
"product_id": "CSAFPID-225856"
}
},
{
"category": "service_pack",
"name": "16.9.1d",
"product": {
"name": "16.9.1d",
"product_id": "CSAFPID-248242"
}
}
],
"category": "product_version",
"name": "16.9"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.10.1",
"product": {
"name": "16.10.1",
"product_id": "CSAFPID-225858"
}
},
{
"category": "service_pack",
"name": "16.10.1e",
"product": {
"name": "16.10.1e",
"product_id": "CSAFPID-257955"
}
}
],
"category": "product_version",
"name": "16.10"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.11.1",
"product": {
"name": "16.11.1",
"product_id": "CSAFPID-227918"
}
},
{
"category": "service_pack",
"name": "16.11.1a",
"product": {
"name": "16.11.1a",
"product_id": "CSAFPID-252271"
}
},
{
"category": "service_pack",
"name": "16.11.2",
"product": {
"name": "16.11.2",
"product_id": "CSAFPID-261240"
}
},
{
"category": "service_pack",
"name": "16.11.1s",
"product": {
"name": "16.11.1s",
"product_id": "CSAFPID-261465"
}
},
{
"category": "service_pack",
"name": "16.11.1c",
"product": {
"name": "16.11.1c",
"product_id": "CSAFPID-264096"
}
}
],
"category": "product_version",
"name": "16.11"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.12.1",
"product": {
"name": "16.12.1",
"product_id": "CSAFPID-227920"
}
},
{
"category": "service_pack",
"name": "16.12.1s",
"product": {
"name": "16.12.1s",
"product_id": "CSAFPID-265735"
}
},
{
"category": "service_pack",
"name": "16.12.1c",
"product": {
"name": "16.12.1c",
"product_id": "CSAFPID-267110"
}
},
{
"category": "service_pack",
"name": "16.12.2",
"product": {
"name": "16.12.2",
"product_id": "CSAFPID-267605"
}
},
{
"category": "service_pack",
"name": "16.12.3",
"product": {
"name": "16.12.3",
"product_id": "CSAFPID-273445"
}
},
{
"category": "service_pack",
"name": "16.12.2s",
"product": {
"name": "16.12.2s",
"product_id": "CSAFPID-273509"
}
},
{
"category": "service_pack",
"name": "16.12.2t",
"product": {
"name": "16.12.2t",
"product_id": "CSAFPID-275538"
}
},
{
"category": "service_pack",
"name": "16.12.4",
"product": {
"name": "16.12.4",
"product_id": "CSAFPID-277147"
}
},
{
"category": "service_pack",
"name": "16.12.3s",
"product": {
"name": "16.12.3s",
"product_id": "CSAFPID-277255"
}
}
],
"category": "product_version",
"name": "16.12"
},
{
"branches": [
{
"category": "service_pack",
"name": "17.1.1",
"product": {
"name": "17.1.1",
"product_id": "CSAFPID-245377"
}
},
{
"category": "service_pack",
"name": "17.1.1s",
"product": {
"name": "17.1.1s",
"product_id": "CSAFPID-274818"
}
},
{
"category": "service_pack",
"name": "17.1.2",
"product": {
"name": "17.1.2",
"product_id": "CSAFPID-277338"
}
},
{
"category": "service_pack",
"name": "17.1.1t",
"product": {
"name": "17.1.1t",
"product_id": "CSAFPID-277348"
}
}
],
"category": "product_version",
"name": "17.1"
},
{
"branches": [
{
"category": "service_pack",
"name": "17.2.1",
"product": {
"name": "17.2.1",
"product_id": "CSAFPID-251225"
}
}
],
"category": "product_version",
"name": "17.2"
}
],
"category": "product_family",
"name": "Cisco IOS XE Software"
}
],
"category": "vendor",
"name": "Cisco"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-1392",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvu58224"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-104376",
"CSAFPID-115969",
"CSAFPID-117282",
"CSAFPID-187057",
"CSAFPID-187269",
"CSAFPID-191928",
"CSAFPID-193033",
"CSAFPID-195528",
"CSAFPID-197462",
"CSAFPID-198063",
"CSAFPID-200492",
"CSAFPID-201074",
"CSAFPID-204102",
"CSAFPID-204103",
"CSAFPID-204186",
"CSAFPID-204228",
"CSAFPID-204826",
"CSAFPID-205672",
"CSAFPID-205723",
"CSAFPID-209045",
"CSAFPID-209046",
"CSAFPID-209049",
"CSAFPID-209050",
"CSAFPID-209051",
"CSAFPID-209067",
"CSAFPID-209068",
"CSAFPID-209073",
"CSAFPID-209074",
"CSAFPID-209075",
"CSAFPID-209077",
"CSAFPID-209080",
"CSAFPID-209081",
"CSAFPID-209086",
"CSAFPID-209087",
"CSAFPID-209089",
"CSAFPID-209090",
"CSAFPID-209358",
"CSAFPID-209419",
"CSAFPID-209474",
"CSAFPID-209839",
"CSAFPID-209930",
"CSAFPID-209935",
"CSAFPID-210137",
"CSAFPID-210189",
"CSAFPID-210203",
"CSAFPID-210262",
"CSAFPID-210410",
"CSAFPID-210411",
"CSAFPID-210491",
"CSAFPID-210766",
"CSAFPID-210937",
"CSAFPID-210958",
"CSAFPID-211256",
"CSAFPID-211296",
"CSAFPID-212266",
"CSAFPID-212497",
"CSAFPID-212686",
"CSAFPID-213089",
"CSAFPID-213654",
"CSAFPID-213655",
"CSAFPID-213770",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214078",
"CSAFPID-214217",
"CSAFPID-214218",
"CSAFPID-214382",
"CSAFPID-214556",
"CSAFPID-214764",
"CSAFPID-214965",
"CSAFPID-216277",
"CSAFPID-216573",
"CSAFPID-216632",
"CSAFPID-217048",
"CSAFPID-217194",
"CSAFPID-217779",
"CSAFPID-217803",
"CSAFPID-218891",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-220038",
"CSAFPID-220235",
"CSAFPID-220441",
"CSAFPID-220446",
"CSAFPID-220460",
"CSAFPID-220461",
"CSAFPID-220507",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221033",
"CSAFPID-222258",
"CSAFPID-222412",
"CSAFPID-222419",
"CSAFPID-222436",
"CSAFPID-222537",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222930",
"CSAFPID-223086",
"CSAFPID-223143",
"CSAFPID-224442",
"CSAFPID-224738",
"CSAFPID-224868",
"CSAFPID-225167",
"CSAFPID-225662",
"CSAFPID-225740",
"CSAFPID-225790",
"CSAFPID-226172",
"CSAFPID-226174",
"CSAFPID-226202",
"CSAFPID-227048",
"CSAFPID-227598",
"CSAFPID-227789",
"CSAFPID-227791",
"CSAFPID-227960",
"CSAFPID-228075",
"CSAFPID-228151",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230587",
"CSAFPID-230591",
"CSAFPID-230592",
"CSAFPID-230596",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230606",
"CSAFPID-230712",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230915",
"CSAFPID-230992",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231017",
"CSAFPID-231245",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232122",
"CSAFPID-232765",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236205",
"CSAFPID-238504",
"CSAFPID-238999",
"CSAFPID-239225",
"CSAFPID-239279",
"CSAFPID-239361",
"CSAFPID-240186",
"CSAFPID-241614",
"CSAFPID-241765",
"CSAFPID-243525",
"CSAFPID-244911",
"CSAFPID-244913",
"CSAFPID-252156",
"CSAFPID-255002",
"CSAFPID-257209",
"CSAFPID-257830",
"CSAFPID-259238",
"CSAFPID-259869",
"CSAFPID-259985",
"CSAFPID-260691",
"CSAFPID-260993",
"CSAFPID-261487",
"CSAFPID-269559",
"CSAFPID-271140",
"CSAFPID-271284",
"CSAFPID-273508",
"CSAFPID-274038",
"CSAFPID-274817",
"CSAFPID-275470",
"CSAFPID-275845",
"CSAFPID-276903",
"CSAFPID-277160",
"CSAFPID-277199",
"CSAFPID-277232",
"CSAFPID-277339",
"CSAFPID-277341",
"CSAFPID-277352",
"CSAFPID-277353",
"CSAFPID-280552",
"CSAFPID-280759",
"CSAFPID-300950",
"CSAFPID-302978",
"CSAFPID-217280",
"CSAFPID-220290",
"CSAFPID-222435",
"CSAFPID-225856",
"CSAFPID-225858",
"CSAFPID-227918",
"CSAFPID-227920",
"CSAFPID-245377",
"CSAFPID-248242",
"CSAFPID-251225",
"CSAFPID-252271",
"CSAFPID-257955",
"CSAFPID-261240",
"CSAFPID-261465",
"CSAFPID-264096",
"CSAFPID-265735",
"CSAFPID-267110",
"CSAFPID-267605",
"CSAFPID-273445",
"CSAFPID-273509",
"CSAFPID-274818",
"CSAFPID-275538",
"CSAFPID-277147",
"CSAFPID-277255",
"CSAFPID-277338",
"CSAFPID-277348"
]
},
"release_date": "2021-03-24T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-217280",
"CSAFPID-220290",
"CSAFPID-222435",
"CSAFPID-225856",
"CSAFPID-225858",
"CSAFPID-227918",
"CSAFPID-227920",
"CSAFPID-245377",
"CSAFPID-248242",
"CSAFPID-251225",
"CSAFPID-252271",
"CSAFPID-257955",
"CSAFPID-261240",
"CSAFPID-261465",
"CSAFPID-264096",
"CSAFPID-265735",
"CSAFPID-267110",
"CSAFPID-267605",
"CSAFPID-273445",
"CSAFPID-273509",
"CSAFPID-274818",
"CSAFPID-275538",
"CSAFPID-277147",
"CSAFPID-277255",
"CSAFPID-277338",
"CSAFPID-277348",
"CSAFPID-104376",
"CSAFPID-115969",
"CSAFPID-117282",
"CSAFPID-187057",
"CSAFPID-187269",
"CSAFPID-191928",
"CSAFPID-193033",
"CSAFPID-195528",
"CSAFPID-197462",
"CSAFPID-198063",
"CSAFPID-200492",
"CSAFPID-201074",
"CSAFPID-204102",
"CSAFPID-204103",
"CSAFPID-204186",
"CSAFPID-204228",
"CSAFPID-204826",
"CSAFPID-205672",
"CSAFPID-205723",
"CSAFPID-209045",
"CSAFPID-209046",
"CSAFPID-209049",
"CSAFPID-209050",
"CSAFPID-209051",
"CSAFPID-209067",
"CSAFPID-209068",
"CSAFPID-209073",
"CSAFPID-209074",
"CSAFPID-209075",
"CSAFPID-209077",
"CSAFPID-209080",
"CSAFPID-209081",
"CSAFPID-209086",
"CSAFPID-209087",
"CSAFPID-209089",
"CSAFPID-209090",
"CSAFPID-209358",
"CSAFPID-209419",
"CSAFPID-209474",
"CSAFPID-209839",
"CSAFPID-209930",
"CSAFPID-209935",
"CSAFPID-210137",
"CSAFPID-210189",
"CSAFPID-210203",
"CSAFPID-210262",
"CSAFPID-210410",
"CSAFPID-210411",
"CSAFPID-210491",
"CSAFPID-210766",
"CSAFPID-210937",
"CSAFPID-210958",
"CSAFPID-211256",
"CSAFPID-211296",
"CSAFPID-212266",
"CSAFPID-212497",
"CSAFPID-212686",
"CSAFPID-213089",
"CSAFPID-213654",
"CSAFPID-213655",
"CSAFPID-213770",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214078",
"CSAFPID-214217",
"CSAFPID-214218",
"CSAFPID-214382",
"CSAFPID-214556",
"CSAFPID-214764",
"CSAFPID-214965",
"CSAFPID-216277",
"CSAFPID-216573",
"CSAFPID-216632",
"CSAFPID-217048",
"CSAFPID-217194",
"CSAFPID-217779",
"CSAFPID-217803",
"CSAFPID-218891",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-220038",
"CSAFPID-220235",
"CSAFPID-220441",
"CSAFPID-220446",
"CSAFPID-220460",
"CSAFPID-220461",
"CSAFPID-220507",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221033",
"CSAFPID-222258",
"CSAFPID-222412",
"CSAFPID-222419",
"CSAFPID-222436",
"CSAFPID-222537",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222930",
"CSAFPID-223086",
"CSAFPID-223143",
"CSAFPID-224442",
"CSAFPID-224738",
"CSAFPID-224868",
"CSAFPID-225167",
"CSAFPID-225662",
"CSAFPID-225740",
"CSAFPID-225790",
"CSAFPID-226172",
"CSAFPID-226174",
"CSAFPID-226202",
"CSAFPID-227048",
"CSAFPID-227598",
"CSAFPID-227789",
"CSAFPID-227791",
"CSAFPID-227960",
"CSAFPID-228075",
"CSAFPID-228151",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230587",
"CSAFPID-230591",
"CSAFPID-230592",
"CSAFPID-230596",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230606",
"CSAFPID-230712",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230915",
"CSAFPID-230992",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231017",
"CSAFPID-231245",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232122",
"CSAFPID-232765",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236205",
"CSAFPID-238504",
"CSAFPID-238999",
"CSAFPID-239225",
"CSAFPID-239279",
"CSAFPID-239361",
"CSAFPID-240186",
"CSAFPID-241614",
"CSAFPID-241765",
"CSAFPID-243525",
"CSAFPID-244911",
"CSAFPID-244913",
"CSAFPID-252156",
"CSAFPID-255002",
"CSAFPID-257209",
"CSAFPID-257830",
"CSAFPID-259238",
"CSAFPID-259869",
"CSAFPID-259985",
"CSAFPID-260691",
"CSAFPID-260993",
"CSAFPID-261487",
"CSAFPID-269559",
"CSAFPID-271140",
"CSAFPID-271284",
"CSAFPID-273508",
"CSAFPID-274038",
"CSAFPID-274817",
"CSAFPID-275470",
"CSAFPID-275845",
"CSAFPID-276903",
"CSAFPID-277160",
"CSAFPID-277199",
"CSAFPID-277232",
"CSAFPID-277339",
"CSAFPID-277341",
"CSAFPID-277352",
"CSAFPID-277353",
"CSAFPID-280552",
"CSAFPID-280759",
"CSAFPID-300950",
"CSAFPID-302978"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-104376",
"CSAFPID-115969",
"CSAFPID-117282",
"CSAFPID-187057",
"CSAFPID-187269",
"CSAFPID-191928",
"CSAFPID-193033",
"CSAFPID-195528",
"CSAFPID-197462",
"CSAFPID-198063",
"CSAFPID-200492",
"CSAFPID-201074",
"CSAFPID-204102",
"CSAFPID-204103",
"CSAFPID-204186",
"CSAFPID-204228",
"CSAFPID-204826",
"CSAFPID-205672",
"CSAFPID-205723",
"CSAFPID-209045",
"CSAFPID-209046",
"CSAFPID-209049",
"CSAFPID-209050",
"CSAFPID-209051",
"CSAFPID-209067",
"CSAFPID-209068",
"CSAFPID-209073",
"CSAFPID-209074",
"CSAFPID-209075",
"CSAFPID-209077",
"CSAFPID-209080",
"CSAFPID-209081",
"CSAFPID-209086",
"CSAFPID-209087",
"CSAFPID-209089",
"CSAFPID-209090",
"CSAFPID-209358",
"CSAFPID-209419",
"CSAFPID-209474",
"CSAFPID-209839",
"CSAFPID-209930",
"CSAFPID-209935",
"CSAFPID-210137",
"CSAFPID-210189",
"CSAFPID-210203",
"CSAFPID-210262",
"CSAFPID-210410",
"CSAFPID-210411",
"CSAFPID-210491",
"CSAFPID-210766",
"CSAFPID-210937",
"CSAFPID-210958",
"CSAFPID-211256",
"CSAFPID-211296",
"CSAFPID-212266",
"CSAFPID-212497",
"CSAFPID-212686",
"CSAFPID-213089",
"CSAFPID-213654",
"CSAFPID-213655",
"CSAFPID-213770",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214078",
"CSAFPID-214217",
"CSAFPID-214218",
"CSAFPID-214382",
"CSAFPID-214556",
"CSAFPID-214764",
"CSAFPID-214965",
"CSAFPID-216277",
"CSAFPID-216573",
"CSAFPID-216632",
"CSAFPID-217048",
"CSAFPID-217194",
"CSAFPID-217779",
"CSAFPID-217803",
"CSAFPID-218891",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-220038",
"CSAFPID-220235",
"CSAFPID-220441",
"CSAFPID-220446",
"CSAFPID-220460",
"CSAFPID-220461",
"CSAFPID-220507",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221033",
"CSAFPID-222258",
"CSAFPID-222412",
"CSAFPID-222419",
"CSAFPID-222436",
"CSAFPID-222537",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222930",
"CSAFPID-223086",
"CSAFPID-223143",
"CSAFPID-224442",
"CSAFPID-224738",
"CSAFPID-224868",
"CSAFPID-225167",
"CSAFPID-225662",
"CSAFPID-225740",
"CSAFPID-225790",
"CSAFPID-226172",
"CSAFPID-226174",
"CSAFPID-226202",
"CSAFPID-227048",
"CSAFPID-227598",
"CSAFPID-227789",
"CSAFPID-227791",
"CSAFPID-227960",
"CSAFPID-228075",
"CSAFPID-228151",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230587",
"CSAFPID-230591",
"CSAFPID-230592",
"CSAFPID-230596",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230606",
"CSAFPID-230712",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230915",
"CSAFPID-230992",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231017",
"CSAFPID-231245",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232122",
"CSAFPID-232765",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236205",
"CSAFPID-238504",
"CSAFPID-238999",
"CSAFPID-239225",
"CSAFPID-239279",
"CSAFPID-239361",
"CSAFPID-240186",
"CSAFPID-241614",
"CSAFPID-241765",
"CSAFPID-243525",
"CSAFPID-244911",
"CSAFPID-244913",
"CSAFPID-252156",
"CSAFPID-255002",
"CSAFPID-257209",
"CSAFPID-257830",
"CSAFPID-259238",
"CSAFPID-259869",
"CSAFPID-259985",
"CSAFPID-260691",
"CSAFPID-260993",
"CSAFPID-261487",
"CSAFPID-269559",
"CSAFPID-271140",
"CSAFPID-271284",
"CSAFPID-273508",
"CSAFPID-274038",
"CSAFPID-274817",
"CSAFPID-275470",
"CSAFPID-275845",
"CSAFPID-276903",
"CSAFPID-277160",
"CSAFPID-277199",
"CSAFPID-277232",
"CSAFPID-277339",
"CSAFPID-277341",
"CSAFPID-277352",
"CSAFPID-277353",
"CSAFPID-280552",
"CSAFPID-280759",
"CSAFPID-300950",
"CSAFPID-302978",
"CSAFPID-217280",
"CSAFPID-220290",
"CSAFPID-222435",
"CSAFPID-225856",
"CSAFPID-225858",
"CSAFPID-227918",
"CSAFPID-227920",
"CSAFPID-245377",
"CSAFPID-248242",
"CSAFPID-251225",
"CSAFPID-252271",
"CSAFPID-257955",
"CSAFPID-261240",
"CSAFPID-261465",
"CSAFPID-264096",
"CSAFPID-265735",
"CSAFPID-267110",
"CSAFPID-267605",
"CSAFPID-273445",
"CSAFPID-273509",
"CSAFPID-274818",
"CSAFPID-275538",
"CSAFPID-277147",
"CSAFPID-277255",
"CSAFPID-277338",
"CSAFPID-277348"
]
}
],
"title": "Cisco IOS and IOS-XE Software Privilege Escalation Vulnerability"
}
]
}
cisco-sa-XE-SAP-OPLbze68
Vulnerability from csaf_cisco
Published
2021-03-24 16:00
Modified
2021-03-24 16:00
Summary
Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability
Notes
Summary
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user.
This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is part of the March 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: March 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication ["https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74408"].
Vulnerable Products
This vulnerability affects Cisco devices if they are running a vulnerable release of Cisco IOS or Cisco IOS XE Software and have CIP enabled.
CIP is not enabled by default.
For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory.
Determine Whether CIP Is Enabled
To determine whether CIP is enabled on a device, issue the show cip status command and check the State: value. The following example shows that CIP is enabled for VLAN 1:
Router> show cip status
State : Enabled
Vlan : 1
If the command returns no output or returns an error message, as shown in the following example, the device is not affected by this vulnerability:
Router> show cip status
^
% Invalid input detected at '^' marker.
Products Confirmed Not Vulnerable
Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by this vulnerability.
Cisco has confirmed that this vulnerability does not affect the following Cisco products:
IOS XR Software
NX-OS Software
Workarounds
There are no workarounds that address this vulnerability. However, mitigations are available:
Disabling the CIP feature eliminates the attack vector for this vulnerability and may be a suitable mitigation until affected devices can be upgraded. To disable the CIP feature, use the no cip enable command in the interface configuration mode for the VLAN that CIP is currently enabled on.
For devices that are configured with TACACS+ authentication, authorization, and accounting (AAA) command authorization, use this feature to give non-administrative users access to the commands that they require and deny access to all other commands.
While these mitigations have been deployed and were proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.
Fixed Software
Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:
https://www.cisco.com/c/en/us/products/end-user-license-agreement.html ["https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"]
Additionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.
When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Customers Without Service Contracts
Customers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"]
Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.
Cisco IOS and IOS XE Software
To help customers determine their exposure to vulnerabilities in Cisco IOS and IOS XE Software, Cisco provides the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] to identify any Cisco Security Advisories that impact a specific software release and the earliest release that fixes the vulnerabilities described in each advisory (“First Fixed”). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories identified (“Combined First Fixed”).
Customers can use the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] to search advisories in the following ways:
Choose the software and one or more releases
Upload a .txt file that includes a list of specific releases
Enter the output of the show version command
After initiating a search, customers can customize the search to include all Cisco Security Advisories, a specific advisory, or all advisories in the most recent bundled publication.
Customers can also use the following form to determine whether a release is affected by any Cisco Security Advisory by entering a Cisco IOS or IOS XE Software release—for example, 15.1(4)M2 or 3.13.8S:
By default, the Cisco Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] includes results only for vulnerabilities that have a Critical or High Security Impact Rating (SIR). To include results for Medium SIR vulnerabilities, customers can use the Cisco Software Checker on Cisco.com and check the Medium check box in the drop-down list under Impact Rating when customizing a search.
For a mapping of Cisco IOS XE Software releases to Cisco IOS Software releases, refer to the Cisco IOS XE 2 Release Notes ["https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032"], Cisco IOS XE 3S Release Notes ["https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754"], or Cisco IOS XE 3SG Release Notes ["https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252"], depending on the Cisco IOS XE Software release.
Vulnerability Policy
To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.
Exploitation and Public Announcements
The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.
Source
This vulnerability was found during internal security testing by X.B. of the Cisco Advanced Security Initiatives Group (ASIG).
Legal Disclaimer
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.
{
"document": {
"acknowledgments": [
{
"summary": "This vulnerability was found during internal security testing by X.B. of the Cisco Advanced Security Initiatives Group (ASIG)."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"notes": [
{
"category": "summary",
"text": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user.\r\n\r\nThis vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.\r\n\r\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.\r\n\r\n\r\n\r\nThis advisory is part of the March 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: March 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [\"https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74408\"].",
"title": "Summary"
},
{
"category": "general",
"text": "This vulnerability affects Cisco devices if they are running a vulnerable release of Cisco IOS or Cisco IOS XE Software and have CIP enabled.\r\n\r\nCIP is not enabled by default.\r\n\r\nFor information about which Cisco software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.\r\n Determine Whether CIP Is Enabled\r\nTo determine whether CIP is enabled on a device, issue the show cip status command and check the State: value. The following example shows that CIP is enabled for VLAN 1:\r\n\r\n\r\nRouter\u003e show cip status\r\nState : Enabled\r\nVlan : 1\r\n\r\nIf the command returns no output or returns an error message, as shown in the following example, the device is not affected by this vulnerability:\r\n\r\n\r\nRouter\u003e show cip status\r\n ^\r\n% Invalid input detected at \u0027^\u0027 marker.",
"title": "Vulnerable Products"
},
{
"category": "general",
"text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by this vulnerability.\r\n\r\nCisco has confirmed that this vulnerability does not affect the following Cisco products:\r\n\r\nIOS XR Software\r\nNX-OS Software",
"title": "Products Confirmed Not Vulnerable"
},
{
"category": "general",
"text": "There are no workarounds that address this vulnerability. However, mitigations are available:\r\n\r\nDisabling the CIP feature eliminates the attack vector for this vulnerability and may be a suitable mitigation until affected devices can be upgraded. To disable the CIP feature, use the no cip enable command in the interface configuration mode for the VLAN that CIP is currently enabled on.\r\nFor devices that are configured with TACACS+ authentication, authorization, and accounting (AAA) command authorization, use this feature to give non-administrative users access to the commands that they require and deny access to all other commands.\r\n\r\nWhile these mitigations have been deployed and were proven successful in a test environment, customers should determine the applicability and effectiveness in their own environment and under their own use conditions. Customers should be aware that any workaround or mitigation that is implemented may negatively impact the functionality or performance of their network based on intrinsic customer deployment scenarios and limitations. Customers should not deploy any workarounds or mitigations before first evaluating the applicability to their own environment and any impact to such environment.",
"title": "Workarounds"
},
{
"category": "general",
"text": "Cisco has released free software updates that address the vulnerability described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:\r\nhttps://www.cisco.com/c/en/us/products/end-user-license-agreement.html [\"https://www.cisco.com/c/en/us/products/end-user-license-agreement.html\"]\r\n\r\nAdditionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.\r\n\r\nWhen considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.\r\n Customers Without Service Contracts\r\nCustomers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"]\r\n\r\nCustomers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.\r\n Cisco IOS and IOS XE Software\r\nTo help customers determine their exposure to vulnerabilities in Cisco IOS and IOS XE Software, Cisco provides the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] to identify any Cisco Security Advisories that impact a specific software release and the earliest release that fixes the vulnerabilities described in each advisory (\u201cFirst Fixed\u201d). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories identified (\u201cCombined First Fixed\u201d).\r\n\r\nCustomers can use the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] to search advisories in the following ways:\r\n\r\nChoose the software and one or more releases\r\nUpload a .txt file that includes a list of specific releases\r\nEnter the output of the show version command\r\n\r\nAfter initiating a search, customers can customize the search to include all Cisco Security Advisories, a specific advisory, or all advisories in the most recent bundled publication.\r\n\r\nCustomers can also use the following form to determine whether a release is affected by any Cisco Security Advisory by entering a Cisco IOS or IOS XE Software release\u2014for example, 15.1(4)M2 or 3.13.8S:\r\n\r\n\r\n\r\nBy default, the Cisco Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] includes results only for vulnerabilities that have a Critical or High Security Impact Rating (SIR). To include results for Medium SIR vulnerabilities, customers can use the Cisco Software Checker on Cisco.com and check the Medium check box in the drop-down list under Impact Rating when customizing a search.\r\n\r\nFor a mapping of Cisco IOS XE Software releases to Cisco IOS Software releases, refer to the Cisco IOS XE 2 Release Notes [\"https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032\"], Cisco IOS XE 3S Release Notes [\"https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754\"], or Cisco IOS XE 3SG Release Notes [\"https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252\"], depending on the Cisco IOS XE Software release.",
"title": "Fixed Software"
},
{
"category": "general",
"text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
"title": "Vulnerability Policy"
},
{
"category": "general",
"text": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.",
"title": "Exploitation and Public Announcements"
},
{
"category": "general",
"text": "This vulnerability was found during internal security testing by X.B. of the Cisco Advanced Security Initiatives Group (ASIG).",
"title": "Source"
},
{
"category": "legal_disclaimer",
"text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
"title": "Legal Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@cisco.com",
"issuing_authority": "Cisco PSIRT",
"name": "Cisco",
"namespace": "https://wwww.cisco.com"
},
"references": [
{
"category": "self",
"summary": "Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
},
{
"category": "external",
"summary": "Cisco Event Response: March 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication",
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74408"
},
{
"category": "external",
"summary": "Cisco Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html",
"url": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"
},
{
"category": "external",
"summary": "considering software upgrades",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Security Advisories page",
"url": "https://www.cisco.com/go/psirt"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html",
"url": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;Software Checker",
"url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 2 Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 3S Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 3SG Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252"
}
],
"title": "Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"tracking": {
"current_release_date": "2021-03-24T16:00:00+00:00",
"generator": {
"date": "2024-05-10T23:01:24+00:00",
"engine": {
"name": "TVCE"
}
},
"id": "cisco-sa-XE-SAP-OPLbze68",
"initial_release_date": "2021-03-24T16:00:00+00:00",
"revision_history": [
{
"date": "2021-03-17T16:20:13+00:00",
"number": "1.0.0",
"summary": "Initial public release."
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "15.0(1)EY",
"product": {
"name": "15.0(1)EY",
"product_id": "CSAFPID-104376"
}
},
{
"category": "service_pack",
"name": "15.0(1)EY1",
"product": {
"name": "15.0(1)EY1",
"product_id": "CSAFPID-115969"
}
},
{
"category": "service_pack",
"name": "15.0(1)EY2",
"product": {
"name": "15.0(1)EY2",
"product_id": "CSAFPID-187269"
}
}
],
"category": "product_version",
"name": "15.0EY"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.0(2)EA",
"product": {
"name": "15.0(2)EA",
"product_id": "CSAFPID-117282"
}
},
{
"category": "service_pack",
"name": "15.0(2)EA1",
"product": {
"name": "15.0(2)EA1",
"product_id": "CSAFPID-193033"
}
}
],
"category": "product_version",
"name": "15.0EA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(2)E",
"product": {
"name": "15.2(2)E",
"product_id": "CSAFPID-187057"
}
},
{
"category": "service_pack",
"name": "15.2(2)E1",
"product": {
"name": "15.2(2)E1",
"product_id": "CSAFPID-201074"
}
},
{
"category": "service_pack",
"name": "15.2(2b)E",
"product": {
"name": "15.2(2b)E",
"product_id": "CSAFPID-204102"
}
},
{
"category": "service_pack",
"name": "15.2(3)E1",
"product": {
"name": "15.2(3)E1",
"product_id": "CSAFPID-204186"
}
},
{
"category": "service_pack",
"name": "15.2(2)E2",
"product": {
"name": "15.2(2)E2",
"product_id": "CSAFPID-204228"
}
},
{
"category": "service_pack",
"name": "15.2(2)E3",
"product": {
"name": "15.2(2)E3",
"product_id": "CSAFPID-205672"
}
},
{
"category": "service_pack",
"name": "15.2(2a)E2",
"product": {
"name": "15.2(2a)E2",
"product_id": "CSAFPID-209045"
}
},
{
"category": "service_pack",
"name": "15.2(3)E2",
"product": {
"name": "15.2(3)E2",
"product_id": "CSAFPID-209046"
}
},
{
"category": "service_pack",
"name": "15.2(3)E3",
"product": {
"name": "15.2(3)E3",
"product_id": "CSAFPID-209358"
}
},
{
"category": "service_pack",
"name": "15.2(2)E4",
"product": {
"name": "15.2(2)E4",
"product_id": "CSAFPID-210766"
}
},
{
"category": "service_pack",
"name": "15.2(2)E5",
"product": {
"name": "15.2(2)E5",
"product_id": "CSAFPID-211296"
}
},
{
"category": "service_pack",
"name": "15.2(3)E4",
"product": {
"name": "15.2(3)E4",
"product_id": "CSAFPID-214078"
}
},
{
"category": "service_pack",
"name": "15.2(5)E",
"product": {
"name": "15.2(5)E",
"product_id": "CSAFPID-214556"
}
},
{
"category": "service_pack",
"name": "15.2(2)E6",
"product": {
"name": "15.2(2)E6",
"product_id": "CSAFPID-218891"
}
},
{
"category": "service_pack",
"name": "15.2(5)E1",
"product": {
"name": "15.2(5)E1",
"product_id": "CSAFPID-220441"
}
},
{
"category": "service_pack",
"name": "15.2(2)E5a",
"product": {
"name": "15.2(2)E5a",
"product_id": "CSAFPID-221033"
}
},
{
"category": "service_pack",
"name": "15.2(2)E5b",
"product": {
"name": "15.2(2)E5b",
"product_id": "CSAFPID-222436"
}
},
{
"category": "service_pack",
"name": "15.2(5a)E1",
"product": {
"name": "15.2(5a)E1",
"product_id": "CSAFPID-223143"
}
},
{
"category": "service_pack",
"name": "15.2(2)E7",
"product": {
"name": "15.2(2)E7",
"product_id": "CSAFPID-224868"
}
},
{
"category": "service_pack",
"name": "15.2(5)E2",
"product": {
"name": "15.2(5)E2",
"product_id": "CSAFPID-225740"
}
},
{
"category": "service_pack",
"name": "15.2(6)E",
"product": {
"name": "15.2(6)E",
"product_id": "CSAFPID-227598"
}
},
{
"category": "service_pack",
"name": "15.2(5)E2c",
"product": {
"name": "15.2(5)E2c",
"product_id": "CSAFPID-228151"
}
},
{
"category": "service_pack",
"name": "15.2(2)E8",
"product": {
"name": "15.2(2)E8",
"product_id": "CSAFPID-230587"
}
},
{
"category": "service_pack",
"name": "15.2(6)E0a",
"product": {
"name": "15.2(6)E0a",
"product_id": "CSAFPID-230591"
}
},
{
"category": "service_pack",
"name": "15.2(6)E1",
"product": {
"name": "15.2(6)E1",
"product_id": "CSAFPID-230592"
}
},
{
"category": "service_pack",
"name": "15.2(6)E0c",
"product": {
"name": "15.2(6)E0c",
"product_id": "CSAFPID-231245"
}
},
{
"category": "service_pack",
"name": "15.2(2)E9",
"product": {
"name": "15.2(2)E9",
"product_id": "CSAFPID-232765"
}
},
{
"category": "service_pack",
"name": "15.2(6)E1a",
"product": {
"name": "15.2(6)E1a",
"product_id": "CSAFPID-238999"
}
},
{
"category": "service_pack",
"name": "15.2(6)E1s",
"product": {
"name": "15.2(6)E1s",
"product_id": "CSAFPID-240186"
}
},
{
"category": "service_pack",
"name": "15.2(2)E10",
"product": {
"name": "15.2(2)E10",
"product_id": "CSAFPID-244911"
}
},
{
"category": "service_pack",
"name": "15.2(7)E0b",
"product": {
"name": "15.2(7)E0b",
"product_id": "CSAFPID-260993"
}
},
{
"category": "service_pack",
"name": "15.2(7a)E0b",
"product": {
"name": "15.2(7a)E0b",
"product_id": "CSAFPID-271140"
}
},
{
"category": "service_pack",
"name": "15.2(7b)E0b",
"product": {
"name": "15.2(7b)E0b",
"product_id": "CSAFPID-276903"
}
}
],
"category": "product_version",
"name": "15.2E"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(1)EY",
"product": {
"name": "15.2(1)EY",
"product_id": "CSAFPID-191928"
}
}
],
"category": "product_version",
"name": "15.2EY"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(4)JAZ",
"product": {
"name": "15.2(4)JAZ",
"product_id": "CSAFPID-195528"
}
}
],
"category": "product_version",
"name": "15.2JAZ"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(2)EB",
"product": {
"name": "15.2(2)EB",
"product_id": "CSAFPID-197462"
}
},
{
"category": "service_pack",
"name": "15.2(2)EB1",
"product": {
"name": "15.2(2)EB1",
"product_id": "CSAFPID-209839"
}
},
{
"category": "service_pack",
"name": "15.2(2)EB2",
"product": {
"name": "15.2(2)EB2",
"product_id": "CSAFPID-214218"
}
}
],
"category": "product_version",
"name": "15.2EB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(2)EA",
"product": {
"name": "15.2(2)EA",
"product_id": "CSAFPID-198063"
}
},
{
"category": "service_pack",
"name": "15.2(2)EA1",
"product": {
"name": "15.2(2)EA1",
"product_id": "CSAFPID-209049"
}
},
{
"category": "service_pack",
"name": "15.2(2)EA2",
"product": {
"name": "15.2(2)EA2",
"product_id": "CSAFPID-209050"
}
},
{
"category": "service_pack",
"name": "15.2(3)EA",
"product": {
"name": "15.2(3)EA",
"product_id": "CSAFPID-209051"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA",
"product": {
"name": "15.2(4)EA",
"product_id": "CSAFPID-210203"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA1",
"product": {
"name": "15.2(4)EA1",
"product_id": "CSAFPID-210958"
}
},
{
"category": "service_pack",
"name": "15.2(2)EA3",
"product": {
"name": "15.2(2)EA3",
"product_id": "CSAFPID-214217"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA3",
"product": {
"name": "15.2(4)EA3",
"product_id": "CSAFPID-214965"
}
},
{
"category": "service_pack",
"name": "15.2(5)EA",
"product": {
"name": "15.2(5)EA",
"product_id": "CSAFPID-220038"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA4",
"product": {
"name": "15.2(4)EA4",
"product_id": "CSAFPID-220460"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA2",
"product": {
"name": "15.2(4)EA2",
"product_id": "CSAFPID-220507"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA5",
"product": {
"name": "15.2(4)EA5",
"product_id": "CSAFPID-222419"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA6",
"product": {
"name": "15.2(4)EA6",
"product_id": "CSAFPID-228075"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA7",
"product": {
"name": "15.2(4)EA7",
"product_id": "CSAFPID-230992"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA8",
"product": {
"name": "15.2(4)EA8",
"product_id": "CSAFPID-241614"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA9",
"product": {
"name": "15.2(4)EA9",
"product_id": "CSAFPID-257830"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA9a",
"product": {
"name": "15.2(4)EA9a",
"product_id": "CSAFPID-274038"
}
},
{
"category": "service_pack",
"name": "15.2(4)EA10",
"product": {
"name": "15.2(4)EA10",
"product_id": "CSAFPID-277353"
}
}
],
"category": "product_version",
"name": "15.2EA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JN",
"product": {
"name": "15.3(3)JN",
"product_id": "CSAFPID-200492"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN3",
"product": {
"name": "15.3(3)JN3",
"product_id": "CSAFPID-209086"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN4",
"product": {
"name": "15.3(3)JN4",
"product_id": "CSAFPID-209087"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN6",
"product": {
"name": "15.3(3)JN6",
"product_id": "CSAFPID-209930"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN7",
"product": {
"name": "15.3(3)JN7",
"product_id": "CSAFPID-209935"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN8",
"product": {
"name": "15.3(3)JN8",
"product_id": "CSAFPID-210410"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN9",
"product": {
"name": "15.3(3)JN9",
"product_id": "CSAFPID-213654"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN11",
"product": {
"name": "15.3(3)JN11",
"product_id": "CSAFPID-222537"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN13",
"product": {
"name": "15.3(3)JN13",
"product_id": "CSAFPID-230915"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN14",
"product": {
"name": "15.3(3)JN14",
"product_id": "CSAFPID-232122"
}
},
{
"category": "service_pack",
"name": "15.3(3)JN15",
"product": {
"name": "15.3(3)JN15",
"product_id": "CSAFPID-239279"
}
}
],
"category": "product_version",
"name": "15.3JN"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JA1",
"product": {
"name": "15.3(3)JA1",
"product_id": "CSAFPID-204826"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA4",
"product": {
"name": "15.3(3)JA4",
"product_id": "CSAFPID-209067"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA5",
"product": {
"name": "15.3(3)JA5",
"product_id": "CSAFPID-209068"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA6",
"product": {
"name": "15.3(3)JA6",
"product_id": "CSAFPID-210937"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA7",
"product": {
"name": "15.3(3)JA7",
"product_id": "CSAFPID-214382"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA8",
"product": {
"name": "15.3(3)JA8",
"product_id": "CSAFPID-214764"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA10",
"product": {
"name": "15.3(3)JA10",
"product_id": "CSAFPID-217779"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA11",
"product": {
"name": "15.3(3)JA11",
"product_id": "CSAFPID-226174"
}
},
{
"category": "service_pack",
"name": "15.3(3)JA12",
"product": {
"name": "15.3(3)JA12",
"product_id": "CSAFPID-230712"
}
}
],
"category": "product_version",
"name": "15.3JA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JAA",
"product": {
"name": "15.3(3)JAA",
"product_id": "CSAFPID-204103"
}
}
],
"category": "product_version",
"name": "15.3JAA"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JB",
"product": {
"name": "15.3(3)JB",
"product_id": "CSAFPID-209077"
}
}
],
"category": "product_version",
"name": "15.3JB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JNB",
"product": {
"name": "15.3(3)JNB",
"product_id": "CSAFPID-205723"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB1",
"product": {
"name": "15.3(3)JNB1",
"product_id": "CSAFPID-209089"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB2",
"product": {
"name": "15.3(3)JNB2",
"product_id": "CSAFPID-209090"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB3",
"product": {
"name": "15.3(3)JNB3",
"product_id": "CSAFPID-210411"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB4",
"product": {
"name": "15.3(3)JNB4",
"product_id": "CSAFPID-213655"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB6",
"product": {
"name": "15.3(3)JNB6",
"product_id": "CSAFPID-224738"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNB5",
"product": {
"name": "15.3(3)JNB5",
"product_id": "CSAFPID-230606"
}
}
],
"category": "product_version",
"name": "15.3JNB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JAX",
"product": {
"name": "15.3(3)JAX",
"product_id": "CSAFPID-209073"
}
},
{
"category": "service_pack",
"name": "15.3(3)JAX1",
"product": {
"name": "15.3(3)JAX1",
"product_id": "CSAFPID-209074"
}
},
{
"category": "service_pack",
"name": "15.3(3)JAX2",
"product": {
"name": "15.3(3)JAX2",
"product_id": "CSAFPID-209075"
}
}
],
"category": "product_version",
"name": "15.3JAX"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JBB",
"product": {
"name": "15.3(3)JBB",
"product_id": "CSAFPID-209080"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB1",
"product": {
"name": "15.3(3)JBB1",
"product_id": "CSAFPID-209081"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB2",
"product": {
"name": "15.3(3)JBB2",
"product_id": "CSAFPID-209419"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB4",
"product": {
"name": "15.3(3)JBB4",
"product_id": "CSAFPID-210189"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB5",
"product": {
"name": "15.3(3)JBB5",
"product_id": "CSAFPID-210262"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB6",
"product": {
"name": "15.3(3)JBB6",
"product_id": "CSAFPID-210491"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB8",
"product": {
"name": "15.3(3)JBB8",
"product_id": "CSAFPID-212266"
}
},
{
"category": "service_pack",
"name": "15.3(3)JBB6a",
"product": {
"name": "15.3(3)JBB6a",
"product_id": "CSAFPID-213770"
}
}
],
"category": "product_version",
"name": "15.3JBB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JC",
"product": {
"name": "15.3(3)JC",
"product_id": "CSAFPID-209474"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC1",
"product": {
"name": "15.3(3)JC1",
"product_id": "CSAFPID-213089"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC2",
"product": {
"name": "15.3(3)JC2",
"product_id": "CSAFPID-216573"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC3",
"product": {
"name": "15.3(3)JC3",
"product_id": "CSAFPID-217803"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC4",
"product": {
"name": "15.3(3)JC4",
"product_id": "CSAFPID-220446"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC5",
"product": {
"name": "15.3(3)JC5",
"product_id": "CSAFPID-222258"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC6",
"product": {
"name": "15.3(3)JC6",
"product_id": "CSAFPID-224442"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC8",
"product": {
"name": "15.3(3)JC8",
"product_id": "CSAFPID-227791"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC9",
"product": {
"name": "15.3(3)JC9",
"product_id": "CSAFPID-230596"
}
},
{
"category": "service_pack",
"name": "15.3(3)JC14",
"product": {
"name": "15.3(3)JC14",
"product_id": "CSAFPID-231017"
}
}
],
"category": "product_version",
"name": "15.3JC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JNC",
"product": {
"name": "15.3(3)JNC",
"product_id": "CSAFPID-210137"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC1",
"product": {
"name": "15.3(3)JNC1",
"product_id": "CSAFPID-212497"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC2",
"product": {
"name": "15.3(3)JNC2",
"product_id": "CSAFPID-216632"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC3",
"product": {
"name": "15.3(3)JNC3",
"product_id": "CSAFPID-222412"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNC4",
"product": {
"name": "15.3(3)JNC4",
"product_id": "CSAFPID-225662"
}
}
],
"category": "product_version",
"name": "15.3JNC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JNP",
"product": {
"name": "15.3(3)JNP",
"product_id": "CSAFPID-211256"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNP1",
"product": {
"name": "15.3(3)JNP1",
"product_id": "CSAFPID-212686"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNP3",
"product": {
"name": "15.3(3)JNP3",
"product_id": "CSAFPID-220657"
}
}
],
"category": "product_version",
"name": "15.3JNP"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPB",
"product": {
"name": "15.3(3)JPB",
"product_id": "CSAFPID-213843"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPB1",
"product": {
"name": "15.3(3)JPB1",
"product_id": "CSAFPID-216277"
}
}
],
"category": "product_version",
"name": "15.3JPB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JD",
"product": {
"name": "15.3(3)JD",
"product_id": "CSAFPID-213954"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD2",
"product": {
"name": "15.3(3)JD2",
"product_id": "CSAFPID-222630"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD3",
"product": {
"name": "15.3(3)JD3",
"product_id": "CSAFPID-222716"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD4",
"product": {
"name": "15.3(3)JD4",
"product_id": "CSAFPID-225790"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD5",
"product": {
"name": "15.3(3)JD5",
"product_id": "CSAFPID-226172"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD6",
"product": {
"name": "15.3(3)JD6",
"product_id": "CSAFPID-227789"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD7",
"product": {
"name": "15.3(3)JD7",
"product_id": "CSAFPID-228955"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD8",
"product": {
"name": "15.3(3)JD8",
"product_id": "CSAFPID-230598"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD9",
"product": {
"name": "15.3(3)JD9",
"product_id": "CSAFPID-230824"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD11",
"product": {
"name": "15.3(3)JD11",
"product_id": "CSAFPID-231000"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD12",
"product": {
"name": "15.3(3)JD12",
"product_id": "CSAFPID-231001"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD13",
"product": {
"name": "15.3(3)JD13",
"product_id": "CSAFPID-232852"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD14",
"product": {
"name": "15.3(3)JD14",
"product_id": "CSAFPID-234115"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD16",
"product": {
"name": "15.3(3)JD16",
"product_id": "CSAFPID-239225"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD17",
"product": {
"name": "15.3(3)JD17",
"product_id": "CSAFPID-259985"
}
}
],
"category": "product_version",
"name": "15.3JD"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.2(4)EC1",
"product": {
"name": "15.2(4)EC1",
"product_id": "CSAFPID-220461"
}
},
{
"category": "service_pack",
"name": "15.2(4)EC2",
"product": {
"name": "15.2(4)EC2",
"product_id": "CSAFPID-223086"
}
}
],
"category": "product_version",
"name": "15.2EC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPC",
"product": {
"name": "15.3(3)JPC",
"product_id": "CSAFPID-217048"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC1",
"product": {
"name": "15.3(3)JPC1",
"product_id": "CSAFPID-220235"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC2",
"product": {
"name": "15.3(3)JPC2",
"product_id": "CSAFPID-220658"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC3",
"product": {
"name": "15.3(3)JPC3",
"product_id": "CSAFPID-225167"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC5",
"product": {
"name": "15.3(3)JPC5",
"product_id": "CSAFPID-230995"
}
}
],
"category": "product_version",
"name": "15.3JPC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JND",
"product": {
"name": "15.3(3)JND",
"product_id": "CSAFPID-217194"
}
},
{
"category": "service_pack",
"name": "15.3(3)JND1",
"product": {
"name": "15.3(3)JND1",
"product_id": "CSAFPID-222930"
}
},
{
"category": "service_pack",
"name": "15.3(3)JND2",
"product": {
"name": "15.3(3)JND2",
"product_id": "CSAFPID-226202"
}
},
{
"category": "service_pack",
"name": "15.3(3)JND3",
"product": {
"name": "15.3(3)JND3",
"product_id": "CSAFPID-227960"
}
}
],
"category": "product_version",
"name": "15.3JND"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JE",
"product": {
"name": "15.3(3)JE",
"product_id": "CSAFPID-218946"
}
}
],
"category": "product_version",
"name": "15.3JE"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPD",
"product": {
"name": "15.3(3)JPD",
"product_id": "CSAFPID-218948"
}
}
],
"category": "product_version",
"name": "15.3JPD"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JF",
"product": {
"name": "15.3(3)JF",
"product_id": "CSAFPID-227048"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF1",
"product": {
"name": "15.3(3)JF1",
"product_id": "CSAFPID-228956"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF2",
"product": {
"name": "15.3(3)JF2",
"product_id": "CSAFPID-230826"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF4",
"product": {
"name": "15.3(3)JF4",
"product_id": "CSAFPID-231679"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF5",
"product": {
"name": "15.3(3)JF5",
"product_id": "CSAFPID-232061"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF6",
"product": {
"name": "15.3(3)JF6",
"product_id": "CSAFPID-236205"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF7",
"product": {
"name": "15.3(3)JF7",
"product_id": "CSAFPID-239361"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF8",
"product": {
"name": "15.3(3)JF8",
"product_id": "CSAFPID-241765"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF9",
"product": {
"name": "15.3(3)JF9",
"product_id": "CSAFPID-243525"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF10",
"product": {
"name": "15.3(3)JF10",
"product_id": "CSAFPID-259238"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF11",
"product": {
"name": "15.3(3)JF11",
"product_id": "CSAFPID-269559"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF12",
"product": {
"name": "15.3(3)JF12",
"product_id": "CSAFPID-274817"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF13",
"product": {
"name": "15.3(3)JF13",
"product_id": "CSAFPID-277160"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF12i",
"product": {
"name": "15.3(3)JF12i",
"product_id": "CSAFPID-277199"
}
}
],
"category": "product_version",
"name": "15.3JF"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JG",
"product": {
"name": "15.3(3)JG",
"product_id": "CSAFPID-230603"
}
},
{
"category": "service_pack",
"name": "15.3(3)JG1",
"product": {
"name": "15.3(3)JG1",
"product_id": "CSAFPID-231796"
}
}
],
"category": "product_version",
"name": "15.3JG"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JH",
"product": {
"name": "15.3(3)JH",
"product_id": "CSAFPID-230605"
}
},
{
"category": "service_pack",
"name": "15.3(3)JH1",
"product": {
"name": "15.3(3)JH1",
"product_id": "CSAFPID-238504"
}
}
],
"category": "product_version",
"name": "15.3JH"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JI1",
"product": {
"name": "15.3(3)JI1",
"product_id": "CSAFPID-244913"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI3",
"product": {
"name": "15.3(3)JI3",
"product_id": "CSAFPID-252156"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI4",
"product": {
"name": "15.3(3)JI4",
"product_id": "CSAFPID-257209"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI5",
"product": {
"name": "15.3(3)JI5",
"product_id": "CSAFPID-260691"
}
},
{
"category": "service_pack",
"name": "15.3(3)JI6",
"product": {
"name": "15.3(3)JI6",
"product_id": "CSAFPID-271284"
}
}
],
"category": "product_version",
"name": "15.3JI"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JK",
"product": {
"name": "15.3(3)JK",
"product_id": "CSAFPID-255002"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK1",
"product": {
"name": "15.3(3)JK1",
"product_id": "CSAFPID-273508"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK2",
"product": {
"name": "15.3(3)JK2",
"product_id": "CSAFPID-275470"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK3",
"product": {
"name": "15.3(3)JK3",
"product_id": "CSAFPID-277339"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK2a",
"product": {
"name": "15.3(3)JK2a",
"product_id": "CSAFPID-277341"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK1t",
"product": {
"name": "15.3(3)JK1t",
"product_id": "CSAFPID-277352"
}
},
{
"category": "service_pack",
"name": "15.3(3)JK4",
"product": {
"name": "15.3(3)JK4",
"product_id": "CSAFPID-280552"
}
}
],
"category": "product_version",
"name": "15.3JK"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JJ",
"product": {
"name": "15.3(3)JJ",
"product_id": "CSAFPID-259869"
}
},
{
"category": "service_pack",
"name": "15.3(3)JJ1",
"product": {
"name": "15.3(3)JJ1",
"product_id": "CSAFPID-261487"
}
}
],
"category": "product_version",
"name": "15.3JJ"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPJ",
"product": {
"name": "15.3(3)JPJ",
"product_id": "CSAFPID-275845"
}
}
],
"category": "product_version",
"name": "15.3JPJ"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVS",
"product": {
"name": "15.1(3)SVS",
"product_id": "CSAFPID-277232"
}
}
],
"category": "product_version",
"name": "15.1SVS"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVT1",
"product": {
"name": "15.1(3)SVT1",
"product_id": "CSAFPID-280759"
}
}
],
"category": "product_version",
"name": "15.1SVT"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPN6",
"product": {
"name": "15.3(3)JPN6",
"product_id": "CSAFPID-302978"
}
}
],
"category": "product_version",
"name": "15.3JPN"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPR1",
"product": {
"name": "15.3(3)JPR1",
"product_id": "CSAFPID-300950"
}
}
],
"category": "product_version",
"name": "15.3JPR"
}
],
"category": "product_family",
"name": "IOS"
},
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "3.6.5bE",
"product": {
"name": "3.6.5bE",
"product_id": "CSAFPID-222435"
}
}
],
"category": "product_version",
"name": "3.6E"
},
{
"branches": [
{
"category": "service_pack",
"name": "3.7.4E",
"product": {
"name": "3.7.4E",
"product_id": "CSAFPID-217280"
}
},
{
"category": "service_pack",
"name": "3.7.5E",
"product": {
"name": "3.7.5E",
"product_id": "CSAFPID-220290"
}
}
],
"category": "product_version",
"name": "3.7E"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.9.1",
"product": {
"name": "16.9.1",
"product_id": "CSAFPID-225856"
}
},
{
"category": "service_pack",
"name": "16.9.1d",
"product": {
"name": "16.9.1d",
"product_id": "CSAFPID-248242"
}
}
],
"category": "product_version",
"name": "16.9"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.10.1",
"product": {
"name": "16.10.1",
"product_id": "CSAFPID-225858"
}
},
{
"category": "service_pack",
"name": "16.10.1e",
"product": {
"name": "16.10.1e",
"product_id": "CSAFPID-257955"
}
}
],
"category": "product_version",
"name": "16.10"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.11.1",
"product": {
"name": "16.11.1",
"product_id": "CSAFPID-227918"
}
},
{
"category": "service_pack",
"name": "16.11.1a",
"product": {
"name": "16.11.1a",
"product_id": "CSAFPID-252271"
}
},
{
"category": "service_pack",
"name": "16.11.2",
"product": {
"name": "16.11.2",
"product_id": "CSAFPID-261240"
}
},
{
"category": "service_pack",
"name": "16.11.1s",
"product": {
"name": "16.11.1s",
"product_id": "CSAFPID-261465"
}
},
{
"category": "service_pack",
"name": "16.11.1c",
"product": {
"name": "16.11.1c",
"product_id": "CSAFPID-264096"
}
}
],
"category": "product_version",
"name": "16.11"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.12.1",
"product": {
"name": "16.12.1",
"product_id": "CSAFPID-227920"
}
},
{
"category": "service_pack",
"name": "16.12.1s",
"product": {
"name": "16.12.1s",
"product_id": "CSAFPID-265735"
}
},
{
"category": "service_pack",
"name": "16.12.1c",
"product": {
"name": "16.12.1c",
"product_id": "CSAFPID-267110"
}
},
{
"category": "service_pack",
"name": "16.12.2",
"product": {
"name": "16.12.2",
"product_id": "CSAFPID-267605"
}
},
{
"category": "service_pack",
"name": "16.12.3",
"product": {
"name": "16.12.3",
"product_id": "CSAFPID-273445"
}
},
{
"category": "service_pack",
"name": "16.12.2s",
"product": {
"name": "16.12.2s",
"product_id": "CSAFPID-273509"
}
},
{
"category": "service_pack",
"name": "16.12.2t",
"product": {
"name": "16.12.2t",
"product_id": "CSAFPID-275538"
}
},
{
"category": "service_pack",
"name": "16.12.4",
"product": {
"name": "16.12.4",
"product_id": "CSAFPID-277147"
}
},
{
"category": "service_pack",
"name": "16.12.3s",
"product": {
"name": "16.12.3s",
"product_id": "CSAFPID-277255"
}
}
],
"category": "product_version",
"name": "16.12"
},
{
"branches": [
{
"category": "service_pack",
"name": "17.1.1",
"product": {
"name": "17.1.1",
"product_id": "CSAFPID-245377"
}
},
{
"category": "service_pack",
"name": "17.1.1s",
"product": {
"name": "17.1.1s",
"product_id": "CSAFPID-274818"
}
},
{
"category": "service_pack",
"name": "17.1.2",
"product": {
"name": "17.1.2",
"product_id": "CSAFPID-277338"
}
},
{
"category": "service_pack",
"name": "17.1.1t",
"product": {
"name": "17.1.1t",
"product_id": "CSAFPID-277348"
}
}
],
"category": "product_version",
"name": "17.1"
},
{
"branches": [
{
"category": "service_pack",
"name": "17.2.1",
"product": {
"name": "17.2.1",
"product_id": "CSAFPID-251225"
}
}
],
"category": "product_version",
"name": "17.2"
}
],
"category": "product_family",
"name": "Cisco IOS XE Software"
}
],
"category": "vendor",
"name": "Cisco"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-1392",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvu58224"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-104376",
"CSAFPID-115969",
"CSAFPID-117282",
"CSAFPID-187057",
"CSAFPID-187269",
"CSAFPID-191928",
"CSAFPID-193033",
"CSAFPID-195528",
"CSAFPID-197462",
"CSAFPID-198063",
"CSAFPID-200492",
"CSAFPID-201074",
"CSAFPID-204102",
"CSAFPID-204103",
"CSAFPID-204186",
"CSAFPID-204228",
"CSAFPID-204826",
"CSAFPID-205672",
"CSAFPID-205723",
"CSAFPID-209045",
"CSAFPID-209046",
"CSAFPID-209049",
"CSAFPID-209050",
"CSAFPID-209051",
"CSAFPID-209067",
"CSAFPID-209068",
"CSAFPID-209073",
"CSAFPID-209074",
"CSAFPID-209075",
"CSAFPID-209077",
"CSAFPID-209080",
"CSAFPID-209081",
"CSAFPID-209086",
"CSAFPID-209087",
"CSAFPID-209089",
"CSAFPID-209090",
"CSAFPID-209358",
"CSAFPID-209419",
"CSAFPID-209474",
"CSAFPID-209839",
"CSAFPID-209930",
"CSAFPID-209935",
"CSAFPID-210137",
"CSAFPID-210189",
"CSAFPID-210203",
"CSAFPID-210262",
"CSAFPID-210410",
"CSAFPID-210411",
"CSAFPID-210491",
"CSAFPID-210766",
"CSAFPID-210937",
"CSAFPID-210958",
"CSAFPID-211256",
"CSAFPID-211296",
"CSAFPID-212266",
"CSAFPID-212497",
"CSAFPID-212686",
"CSAFPID-213089",
"CSAFPID-213654",
"CSAFPID-213655",
"CSAFPID-213770",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214078",
"CSAFPID-214217",
"CSAFPID-214218",
"CSAFPID-214382",
"CSAFPID-214556",
"CSAFPID-214764",
"CSAFPID-214965",
"CSAFPID-216277",
"CSAFPID-216573",
"CSAFPID-216632",
"CSAFPID-217048",
"CSAFPID-217194",
"CSAFPID-217779",
"CSAFPID-217803",
"CSAFPID-218891",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-220038",
"CSAFPID-220235",
"CSAFPID-220441",
"CSAFPID-220446",
"CSAFPID-220460",
"CSAFPID-220461",
"CSAFPID-220507",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221033",
"CSAFPID-222258",
"CSAFPID-222412",
"CSAFPID-222419",
"CSAFPID-222436",
"CSAFPID-222537",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222930",
"CSAFPID-223086",
"CSAFPID-223143",
"CSAFPID-224442",
"CSAFPID-224738",
"CSAFPID-224868",
"CSAFPID-225167",
"CSAFPID-225662",
"CSAFPID-225740",
"CSAFPID-225790",
"CSAFPID-226172",
"CSAFPID-226174",
"CSAFPID-226202",
"CSAFPID-227048",
"CSAFPID-227598",
"CSAFPID-227789",
"CSAFPID-227791",
"CSAFPID-227960",
"CSAFPID-228075",
"CSAFPID-228151",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230587",
"CSAFPID-230591",
"CSAFPID-230592",
"CSAFPID-230596",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230606",
"CSAFPID-230712",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230915",
"CSAFPID-230992",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231017",
"CSAFPID-231245",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232122",
"CSAFPID-232765",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236205",
"CSAFPID-238504",
"CSAFPID-238999",
"CSAFPID-239225",
"CSAFPID-239279",
"CSAFPID-239361",
"CSAFPID-240186",
"CSAFPID-241614",
"CSAFPID-241765",
"CSAFPID-243525",
"CSAFPID-244911",
"CSAFPID-244913",
"CSAFPID-252156",
"CSAFPID-255002",
"CSAFPID-257209",
"CSAFPID-257830",
"CSAFPID-259238",
"CSAFPID-259869",
"CSAFPID-259985",
"CSAFPID-260691",
"CSAFPID-260993",
"CSAFPID-261487",
"CSAFPID-269559",
"CSAFPID-271140",
"CSAFPID-271284",
"CSAFPID-273508",
"CSAFPID-274038",
"CSAFPID-274817",
"CSAFPID-275470",
"CSAFPID-275845",
"CSAFPID-276903",
"CSAFPID-277160",
"CSAFPID-277199",
"CSAFPID-277232",
"CSAFPID-277339",
"CSAFPID-277341",
"CSAFPID-277352",
"CSAFPID-277353",
"CSAFPID-280552",
"CSAFPID-280759",
"CSAFPID-300950",
"CSAFPID-302978",
"CSAFPID-217280",
"CSAFPID-220290",
"CSAFPID-222435",
"CSAFPID-225856",
"CSAFPID-225858",
"CSAFPID-227918",
"CSAFPID-227920",
"CSAFPID-245377",
"CSAFPID-248242",
"CSAFPID-251225",
"CSAFPID-252271",
"CSAFPID-257955",
"CSAFPID-261240",
"CSAFPID-261465",
"CSAFPID-264096",
"CSAFPID-265735",
"CSAFPID-267110",
"CSAFPID-267605",
"CSAFPID-273445",
"CSAFPID-273509",
"CSAFPID-274818",
"CSAFPID-275538",
"CSAFPID-277147",
"CSAFPID-277255",
"CSAFPID-277338",
"CSAFPID-277348"
]
},
"release_date": "2021-03-24T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-217280",
"CSAFPID-220290",
"CSAFPID-222435",
"CSAFPID-225856",
"CSAFPID-225858",
"CSAFPID-227918",
"CSAFPID-227920",
"CSAFPID-245377",
"CSAFPID-248242",
"CSAFPID-251225",
"CSAFPID-252271",
"CSAFPID-257955",
"CSAFPID-261240",
"CSAFPID-261465",
"CSAFPID-264096",
"CSAFPID-265735",
"CSAFPID-267110",
"CSAFPID-267605",
"CSAFPID-273445",
"CSAFPID-273509",
"CSAFPID-274818",
"CSAFPID-275538",
"CSAFPID-277147",
"CSAFPID-277255",
"CSAFPID-277338",
"CSAFPID-277348",
"CSAFPID-104376",
"CSAFPID-115969",
"CSAFPID-117282",
"CSAFPID-187057",
"CSAFPID-187269",
"CSAFPID-191928",
"CSAFPID-193033",
"CSAFPID-195528",
"CSAFPID-197462",
"CSAFPID-198063",
"CSAFPID-200492",
"CSAFPID-201074",
"CSAFPID-204102",
"CSAFPID-204103",
"CSAFPID-204186",
"CSAFPID-204228",
"CSAFPID-204826",
"CSAFPID-205672",
"CSAFPID-205723",
"CSAFPID-209045",
"CSAFPID-209046",
"CSAFPID-209049",
"CSAFPID-209050",
"CSAFPID-209051",
"CSAFPID-209067",
"CSAFPID-209068",
"CSAFPID-209073",
"CSAFPID-209074",
"CSAFPID-209075",
"CSAFPID-209077",
"CSAFPID-209080",
"CSAFPID-209081",
"CSAFPID-209086",
"CSAFPID-209087",
"CSAFPID-209089",
"CSAFPID-209090",
"CSAFPID-209358",
"CSAFPID-209419",
"CSAFPID-209474",
"CSAFPID-209839",
"CSAFPID-209930",
"CSAFPID-209935",
"CSAFPID-210137",
"CSAFPID-210189",
"CSAFPID-210203",
"CSAFPID-210262",
"CSAFPID-210410",
"CSAFPID-210411",
"CSAFPID-210491",
"CSAFPID-210766",
"CSAFPID-210937",
"CSAFPID-210958",
"CSAFPID-211256",
"CSAFPID-211296",
"CSAFPID-212266",
"CSAFPID-212497",
"CSAFPID-212686",
"CSAFPID-213089",
"CSAFPID-213654",
"CSAFPID-213655",
"CSAFPID-213770",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214078",
"CSAFPID-214217",
"CSAFPID-214218",
"CSAFPID-214382",
"CSAFPID-214556",
"CSAFPID-214764",
"CSAFPID-214965",
"CSAFPID-216277",
"CSAFPID-216573",
"CSAFPID-216632",
"CSAFPID-217048",
"CSAFPID-217194",
"CSAFPID-217779",
"CSAFPID-217803",
"CSAFPID-218891",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-220038",
"CSAFPID-220235",
"CSAFPID-220441",
"CSAFPID-220446",
"CSAFPID-220460",
"CSAFPID-220461",
"CSAFPID-220507",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221033",
"CSAFPID-222258",
"CSAFPID-222412",
"CSAFPID-222419",
"CSAFPID-222436",
"CSAFPID-222537",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222930",
"CSAFPID-223086",
"CSAFPID-223143",
"CSAFPID-224442",
"CSAFPID-224738",
"CSAFPID-224868",
"CSAFPID-225167",
"CSAFPID-225662",
"CSAFPID-225740",
"CSAFPID-225790",
"CSAFPID-226172",
"CSAFPID-226174",
"CSAFPID-226202",
"CSAFPID-227048",
"CSAFPID-227598",
"CSAFPID-227789",
"CSAFPID-227791",
"CSAFPID-227960",
"CSAFPID-228075",
"CSAFPID-228151",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230587",
"CSAFPID-230591",
"CSAFPID-230592",
"CSAFPID-230596",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230606",
"CSAFPID-230712",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230915",
"CSAFPID-230992",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231017",
"CSAFPID-231245",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232122",
"CSAFPID-232765",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236205",
"CSAFPID-238504",
"CSAFPID-238999",
"CSAFPID-239225",
"CSAFPID-239279",
"CSAFPID-239361",
"CSAFPID-240186",
"CSAFPID-241614",
"CSAFPID-241765",
"CSAFPID-243525",
"CSAFPID-244911",
"CSAFPID-244913",
"CSAFPID-252156",
"CSAFPID-255002",
"CSAFPID-257209",
"CSAFPID-257830",
"CSAFPID-259238",
"CSAFPID-259869",
"CSAFPID-259985",
"CSAFPID-260691",
"CSAFPID-260993",
"CSAFPID-261487",
"CSAFPID-269559",
"CSAFPID-271140",
"CSAFPID-271284",
"CSAFPID-273508",
"CSAFPID-274038",
"CSAFPID-274817",
"CSAFPID-275470",
"CSAFPID-275845",
"CSAFPID-276903",
"CSAFPID-277160",
"CSAFPID-277199",
"CSAFPID-277232",
"CSAFPID-277339",
"CSAFPID-277341",
"CSAFPID-277352",
"CSAFPID-277353",
"CSAFPID-280552",
"CSAFPID-280759",
"CSAFPID-300950",
"CSAFPID-302978"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-104376",
"CSAFPID-115969",
"CSAFPID-117282",
"CSAFPID-187057",
"CSAFPID-187269",
"CSAFPID-191928",
"CSAFPID-193033",
"CSAFPID-195528",
"CSAFPID-197462",
"CSAFPID-198063",
"CSAFPID-200492",
"CSAFPID-201074",
"CSAFPID-204102",
"CSAFPID-204103",
"CSAFPID-204186",
"CSAFPID-204228",
"CSAFPID-204826",
"CSAFPID-205672",
"CSAFPID-205723",
"CSAFPID-209045",
"CSAFPID-209046",
"CSAFPID-209049",
"CSAFPID-209050",
"CSAFPID-209051",
"CSAFPID-209067",
"CSAFPID-209068",
"CSAFPID-209073",
"CSAFPID-209074",
"CSAFPID-209075",
"CSAFPID-209077",
"CSAFPID-209080",
"CSAFPID-209081",
"CSAFPID-209086",
"CSAFPID-209087",
"CSAFPID-209089",
"CSAFPID-209090",
"CSAFPID-209358",
"CSAFPID-209419",
"CSAFPID-209474",
"CSAFPID-209839",
"CSAFPID-209930",
"CSAFPID-209935",
"CSAFPID-210137",
"CSAFPID-210189",
"CSAFPID-210203",
"CSAFPID-210262",
"CSAFPID-210410",
"CSAFPID-210411",
"CSAFPID-210491",
"CSAFPID-210766",
"CSAFPID-210937",
"CSAFPID-210958",
"CSAFPID-211256",
"CSAFPID-211296",
"CSAFPID-212266",
"CSAFPID-212497",
"CSAFPID-212686",
"CSAFPID-213089",
"CSAFPID-213654",
"CSAFPID-213655",
"CSAFPID-213770",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214078",
"CSAFPID-214217",
"CSAFPID-214218",
"CSAFPID-214382",
"CSAFPID-214556",
"CSAFPID-214764",
"CSAFPID-214965",
"CSAFPID-216277",
"CSAFPID-216573",
"CSAFPID-216632",
"CSAFPID-217048",
"CSAFPID-217194",
"CSAFPID-217779",
"CSAFPID-217803",
"CSAFPID-218891",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-220038",
"CSAFPID-220235",
"CSAFPID-220441",
"CSAFPID-220446",
"CSAFPID-220460",
"CSAFPID-220461",
"CSAFPID-220507",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221033",
"CSAFPID-222258",
"CSAFPID-222412",
"CSAFPID-222419",
"CSAFPID-222436",
"CSAFPID-222537",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222930",
"CSAFPID-223086",
"CSAFPID-223143",
"CSAFPID-224442",
"CSAFPID-224738",
"CSAFPID-224868",
"CSAFPID-225167",
"CSAFPID-225662",
"CSAFPID-225740",
"CSAFPID-225790",
"CSAFPID-226172",
"CSAFPID-226174",
"CSAFPID-226202",
"CSAFPID-227048",
"CSAFPID-227598",
"CSAFPID-227789",
"CSAFPID-227791",
"CSAFPID-227960",
"CSAFPID-228075",
"CSAFPID-228151",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230587",
"CSAFPID-230591",
"CSAFPID-230592",
"CSAFPID-230596",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230606",
"CSAFPID-230712",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230915",
"CSAFPID-230992",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231017",
"CSAFPID-231245",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232122",
"CSAFPID-232765",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236205",
"CSAFPID-238504",
"CSAFPID-238999",
"CSAFPID-239225",
"CSAFPID-239279",
"CSAFPID-239361",
"CSAFPID-240186",
"CSAFPID-241614",
"CSAFPID-241765",
"CSAFPID-243525",
"CSAFPID-244911",
"CSAFPID-244913",
"CSAFPID-252156",
"CSAFPID-255002",
"CSAFPID-257209",
"CSAFPID-257830",
"CSAFPID-259238",
"CSAFPID-259869",
"CSAFPID-259985",
"CSAFPID-260691",
"CSAFPID-260993",
"CSAFPID-261487",
"CSAFPID-269559",
"CSAFPID-271140",
"CSAFPID-271284",
"CSAFPID-273508",
"CSAFPID-274038",
"CSAFPID-274817",
"CSAFPID-275470",
"CSAFPID-275845",
"CSAFPID-276903",
"CSAFPID-277160",
"CSAFPID-277199",
"CSAFPID-277232",
"CSAFPID-277339",
"CSAFPID-277341",
"CSAFPID-277352",
"CSAFPID-277353",
"CSAFPID-280552",
"CSAFPID-280759",
"CSAFPID-300950",
"CSAFPID-302978",
"CSAFPID-217280",
"CSAFPID-220290",
"CSAFPID-222435",
"CSAFPID-225856",
"CSAFPID-225858",
"CSAFPID-227918",
"CSAFPID-227920",
"CSAFPID-245377",
"CSAFPID-248242",
"CSAFPID-251225",
"CSAFPID-252271",
"CSAFPID-257955",
"CSAFPID-261240",
"CSAFPID-261465",
"CSAFPID-264096",
"CSAFPID-265735",
"CSAFPID-267110",
"CSAFPID-267605",
"CSAFPID-273445",
"CSAFPID-273509",
"CSAFPID-274818",
"CSAFPID-275538",
"CSAFPID-277147",
"CSAFPID-277255",
"CSAFPID-277338",
"CSAFPID-277348"
]
}
],
"title": "Cisco IOS and IOS-XE Software Privilege Escalation Vulnerability"
}
]
}
ICSA-21-110-02
Vulnerability from csaf_cisa
Published
2021-04-20 00:00
Modified
2021-04-20 00:00
Summary
ICSA-21-110-02_Rockwell Automation Stratix Switches
Notes
CISA Disclaimer
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Summary
Cisco reported these vulnerabilities to Rockwell Automation.
Exploitability
No known public exploits specifically target these vulnerabilities.
{
"document": {
"acknowledgments": [
{
"organization": "Cisco",
"summary": "reporting these vulnerabilities to Rockwell Automation"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "summary",
"text": "Cisco reported these vulnerabilities to Rockwell Automation.",
"title": "Summary"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "CISAservicedesk@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-21-110-02 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-110-02.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-21-110-02 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-110-02"
}
],
"title": "ICSA-21-110-02_Rockwell Automation Stratix Switches",
"tracking": {
"current_release_date": "2021-04-20T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA USCert CSAF Generator",
"version": "1"
}
},
"id": "ICSA-21-110-02",
"initial_release_date": "2021-04-20T00:00:00.000000Z",
"revision_history": [
{
"date": "2021-04-20T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "ICSA-21-110-02 Rockwell Automation Stratix Switches"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 5400: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "Stratix 5400"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 5700: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "Stratix 5700"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 5410: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "Stratix 5410"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 8000: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "Stratix 8000"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 16.12.01",
"product": {
"name": "Stratix 5800: Versions 16.12.01 and earlier",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "Stratix 5800"
}
],
"category": "vendor",
"name": "Rockwell Automation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-1392",
"cwe": {
"id": "CWE-522",
"name": "Insufficiently Protected Credentials"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE software could allow an authenticated attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the affected device as an administrative user.CVE-2021-1392 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1392"
},
{
"cve": "CVE-2021-1403",
"cwe": {
"id": "CWE-345",
"name": "Insufficient Verification of Data Authenticity"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the web UI feature of Cisco IOS XE software could allow an unauthenticated, remote attacker to conduct a cross-site WebSocket hijacking (CSWSH) attack and cause a denial-of-service condition on an affected device.CVE-2021-1403 has been assigned to this vulnerability. A CVSS v3 base score of 7.4 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1403"
},
{
"cve": "CVE-2021-1352",
"cwe": {
"id": "CWE-823",
"name": "Use of Out-of-range Pointer Offset"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the DECnet protocol processing of Cisco IOS XE software could allow an unauthenticated, adjacent attacker to cause a denial-of-service condition on an affected device. An attacker could exploit this vulnerability by sending DECnet traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial-of-service condition. This vulnerability affects Stratix 5800 devices if they are running a vulnerable release of Cisco IOS XE software and have the DECnet protocol enabled. DECnet is not enabled by default. CVE-2021-1352 has been assigned to this vulnerability. A CVSS v3 base score of 7.4 has been calculated; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1403"
},
{
"cve": "CVE-2021-1442",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the Stratix 5800 switches could allow an unauthenticated, physical attacker to execute persistent code at boot time and break the chain of trust. CVE-2021-1452 has been assigned to this vulnerability. A CVSS v3 base score of 6.8 has been calculated; the CVSS vector string is (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1403"
},
{
"cve": "CVE-2021-1452",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in a diagnostic command for the Plug and Play (PnP) subsystem of Cisco IOS XE software could allow an authenticated, local attacker to elevate privileges to the level of an administrator on an affected Stratix 5800. Plug-and-Play is disabled after Express Setup has completed.CVE-2021-1442 has been assigned to this vulnerability. A CVSS v3 base score of 7.0 has been calculated; the CVSS vector string is (AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1452"
},
{
"cve": "CVE-2021-1443",
"cwe": {
"id": "CWE-77",
"name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the Stratix 5800 switches could allow an unauthenticated, physical attacker to execute persistent code at boot time and break the chain of trust.CVE-2021-1452 has been assigned to this vulnerability. A CVSS v3 base score of 6.8 has been calculated; the CVSS vector string is (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1443"
},
{
"cve": "CVE-2021-1220",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the web UI of the IOS XE software could allow a remote, authenticated attacker to execute arbitrary code with root privileges on the underlying operating system of the affected device. To exploit this vulnerability, an attacker would need to have admin credentials to the device.CVE-2021-1443 has been assigned to this vulnerability. A CVSS v3 base score of 5.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1220"
}
]
}
icsa-21-110-02
Vulnerability from csaf_cisa
Published
2021-04-20 00:00
Modified
2021-04-20 00:00
Summary
ICSA-21-110-02_Rockwell Automation Stratix Switches
Notes
CISA Disclaimer
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Summary
Cisco reported these vulnerabilities to Rockwell Automation.
Exploitability
No known public exploits specifically target these vulnerabilities.
{
"document": {
"acknowledgments": [
{
"organization": "Cisco",
"summary": "reporting these vulnerabilities to Rockwell Automation"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "summary",
"text": "Cisco reported these vulnerabilities to Rockwell Automation.",
"title": "Summary"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "CISAservicedesk@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-21-110-02 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-110-02.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-21-110-02 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-110-02"
}
],
"title": "ICSA-21-110-02_Rockwell Automation Stratix Switches",
"tracking": {
"current_release_date": "2021-04-20T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA USCert CSAF Generator",
"version": "1"
}
},
"id": "ICSA-21-110-02",
"initial_release_date": "2021-04-20T00:00:00.000000Z",
"revision_history": [
{
"date": "2021-04-20T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "ICSA-21-110-02 Rockwell Automation Stratix Switches"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 5400: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "Stratix 5400"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 5700: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "Stratix 5700"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 5410: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "Stratix 5410"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 15.2(7)E3",
"product": {
"name": "Stratix 8000: Versions 15.2(7)E3 and earlier",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "Stratix 8000"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c= 16.12.01",
"product": {
"name": "Stratix 5800: Versions 16.12.01 and earlier",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "Stratix 5800"
}
],
"category": "vendor",
"name": "Rockwell Automation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-1392",
"cwe": {
"id": "CWE-522",
"name": "Insufficiently Protected Credentials"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE software could allow an authenticated attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the affected device as an administrative user.CVE-2021-1392 has been assigned to this vulnerability. A CVSS v3 base score of 7.8 has been calculated; the CVSS vector string is (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1392"
},
{
"cve": "CVE-2021-1403",
"cwe": {
"id": "CWE-345",
"name": "Insufficient Verification of Data Authenticity"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the web UI feature of Cisco IOS XE software could allow an unauthenticated, remote attacker to conduct a cross-site WebSocket hijacking (CSWSH) attack and cause a denial-of-service condition on an affected device.CVE-2021-1403 has been assigned to this vulnerability. A CVSS v3 base score of 7.4 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1403"
},
{
"cve": "CVE-2021-1352",
"cwe": {
"id": "CWE-823",
"name": "Use of Out-of-range Pointer Offset"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the DECnet protocol processing of Cisco IOS XE software could allow an unauthenticated, adjacent attacker to cause a denial-of-service condition on an affected device. An attacker could exploit this vulnerability by sending DECnet traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial-of-service condition. This vulnerability affects Stratix 5800 devices if they are running a vulnerable release of Cisco IOS XE software and have the DECnet protocol enabled. DECnet is not enabled by default. CVE-2021-1352 has been assigned to this vulnerability. A CVSS v3 base score of 7.4 has been calculated; the CVSS vector string is (AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1403"
},
{
"cve": "CVE-2021-1442",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the Stratix 5800 switches could allow an unauthenticated, physical attacker to execute persistent code at boot time and break the chain of trust. CVE-2021-1452 has been assigned to this vulnerability. A CVSS v3 base score of 6.8 has been calculated; the CVSS vector string is (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1403"
},
{
"cve": "CVE-2021-1452",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in a diagnostic command for the Plug and Play (PnP) subsystem of Cisco IOS XE software could allow an authenticated, local attacker to elevate privileges to the level of an administrator on an affected Stratix 5800. Plug-and-Play is disabled after Express Setup has completed.CVE-2021-1442 has been assigned to this vulnerability. A CVSS v3 base score of 7.0 has been calculated; the CVSS vector string is (AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1452"
},
{
"cve": "CVE-2021-1443",
"cwe": {
"id": "CWE-77",
"name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the Stratix 5800 switches could allow an unauthenticated, physical attacker to execute persistent code at boot time and break the chain of trust.CVE-2021-1452 has been assigned to this vulnerability. A CVSS v3 base score of 6.8 has been calculated; the CVSS vector string is (AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1443"
},
{
"cve": "CVE-2021-1220",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability in the web UI of the IOS XE software could allow a remote, authenticated attacker to execute arbitrary code with root privileges on the underlying operating system of the affected device. To exploit this vulnerability, an attacker would need to have admin credentials to the device.CVE-2021-1443 has been assigned to this vulnerability. A CVSS v3 base score of 5.5 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
"references": [
{
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Rockwell Automation encourages users of the affected Stratix devices to update to an available firmware revision that addresses the associated risk.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "vendor_fix",
"details": "Stratix 5800: Apply Version 17.04.01 or later. If possible, disable DECnet protocol completely or on select interfaces.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Stratix 8300: Migrate to contemporary solution.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "All versions, including Stratix 8000, Stratix 5700, Stratix 5410, Stratix 5400: Confirm the least-privilege user principle is followed, and user account access to is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Please see the Rockwell Automation security advisory for more detailed information.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1130763"
},
{
"category": "mitigation",
"details": "Where a fix is not yet available, users who are unable to update are directed towards the risk mitigation strategies provided below, and are encouraged, when possible, to apply general security guidelines to employ multiple strategies simultaneously.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Currently, Rockwell Automation is working to address these vulnerabilities and will continue to provide updates as these fixes become available.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use proper network infrastructure controls, such as firewalls, to help confirm traffic from unauthorized sources is blocked.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Consult the product documentation for specific features, such as a hardware mode switch setting, to which may be used to block unauthorized changes, etc.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Confirm the least-privilege user principle is followed, and user/service account access to shared resources (such as a database) is only granted with a minimum number of rights as needed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Use trusted firmware, antivirus/antimalware programs and interact only with trusted websites and attachments.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and/or systems and confirm they are not accessible from the Internet. For further information about the risks of unprotected Internet accessible control systems, please see Knowledgebase Article PN715",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
],
"url": "https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/0494865"
},
{
"category": "mitigation",
"details": "Locate control system networks and devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as virtual private networks (VPNs), recognizing that VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize a VPN is only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005"
]
}
],
"title": "CVE-2021-1220"
}
]
}
gsd-2021-1392
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-1392",
"description": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.",
"id": "GSD-2021-1392"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-1392"
],
"details": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.",
"id": "GSD-2021-1392",
"modified": "2023-12-13T01:23:23.612074Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"DATE_PUBLIC": "2021-03-24T16:00:00",
"ID": "CVE-2021-1392",
"STATE": "PUBLIC",
"TITLE": "Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cisco IOS ",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "Cisco"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device."
}
]
},
"exploit": [
{
"lang": "eng",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. "
}
],
"impact": {
"cvss": {
"baseScore": "7.8",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H ",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-522"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
}
]
},
"source": {
"advisory": "cisco-sa-XE-SAP-OPLbze68",
"defect": [
[
"CSCvu58224"
]
],
"discovery": "INTERNAL"
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.0\\(1\\)ey:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.0\\(1\\)ey1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.0\\(1\\)ey2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.1\\(3\\)svs:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.1\\(3\\)svt1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(1\\)ey:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e5a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e5b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e7b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)eb:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)eb1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2\\)eb2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2a\\)e2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(2b\\)e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(3\\)ea:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)e5a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea9a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ec1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ec2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(4\\)jaz:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e2b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e2c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(5\\)ea:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(5a\\)e1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e0c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e1s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(7\\)e0b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(7a\\)e0b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.2\\(7b\\)e0b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jaa:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jax:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jax1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jax2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jb:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb6a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)je:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf12i:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jh:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jh1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jj:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jj1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk1t:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk2a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpd:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.3.0xo:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.3.1xo:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.3.2xo:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.6.5be:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.7.4e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.7.5e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.9.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.9.1d:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.10.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.10.1e:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.11.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.11.1c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.11.1s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.11.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.1c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.1s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.2s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.2t:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.3s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.12.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:17.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:17.1.1s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:17.1.1t:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:17.1.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:17.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"ID": "CVE-2021-1392"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-522"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20210324 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"refsource": "CISCO",
"tags": [
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2021-03-29T22:42Z",
"publishedDate": "2021-03-24T20:15Z"
}
}
}
var-202103-0537
Vulnerability from variot
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device. Cisco IOS and IOS XE Exists in an inadequate protection of credentials.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. Both Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network equipment
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-202103-0537",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "17.2.1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e7"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.11.1s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnd1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd17"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jb"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnd"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.0\\(1\\)ey2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3.1xo"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3.0xo"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnp1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn14"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf10"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.1\\(3\\)svs"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jj"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb4"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.6.5be"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn9"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.7.4e"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(3\\)ea"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2a\\)e2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd12"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnp"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf9"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn15"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e5b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)ea2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpd"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ec2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd13"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf7"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnc4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc14"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(5\\)ea"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea9"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "17.1.1t"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpb"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2b\\)e"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jj1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jg"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(3\\)e2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)eb2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "17.1.2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(5a\\)e1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jh1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd16"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb6a"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.10.1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ji3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd9"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.3s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e5a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jax2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.9.1d"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea10"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.7.5e"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e7b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(7\\)e0b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jaa"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ec1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(3\\)e3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ji4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(3\\)e1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(6\\)e0c"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.2t"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.11.2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea7"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf12"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.11.1a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jax"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(7a\\)e0b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(6\\)e1a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ji5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnc3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn7"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e10"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn13"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.10.1e"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk2a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd7"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(5\\)e2c"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd11"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk1t"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnc"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(6\\)e1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(5\\)e1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(7b\\)e0b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf13"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.0\\(1\\)ey"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)e5a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf12i"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnc2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf5"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "17.1.1s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk4"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)eb"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(6\\)e1s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(6\\)e0a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnd3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)ea1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.1\\(3\\)svt1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(3\\)e4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(3\\)e5"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.2s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja7"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn3"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.11.1c"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnp3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3.2xo"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e9"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)eb1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "17.1.1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd14"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.9.1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn11"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(5\\)e2b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jg1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja10"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk3"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.1c"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.12.1s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jbb"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea9a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(1\\)ey"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(6\\)e"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ji6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)ea6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jh"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.0\\(1\\)ey1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ji1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf11"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)je"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnc1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpb1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(5\\)e"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja12"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jn"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(4\\)jaz"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)ea"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(5\\)e2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)ja11"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jax1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)ea3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnd2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.2\\(2\\)e"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jc9"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.11.1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc1"
},
{
"model": "cisco ios",
"scope": "eq",
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
},
{
"model": "cisco ios",
"scope": "eq",
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": "xe"
},
{
"model": "cisco ios xe",
"scope": "eq",
"trust": 0.8,
"vendor": "\u30b7\u30b9\u30b3\u30b7\u30b9\u30c6\u30e0\u30ba",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"cve": "CVE-2021-1392",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "CVE-2021-1392",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 1.9,
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.9,
"id": "VHN-374446",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.1,
"vectorString": "AV:L/AC:L/AU:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2021-1392",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"trust": 2.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Local",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 7.8,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2021-1392",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "Low",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2021-1392",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "ykramarz@cisco.com",
"id": "CVE-2021-1392",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2021-1392",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-202104-975",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-202103-1409",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-374446",
"trust": 0.1,
"value": "LOW"
},
{
"author": "VULMON",
"id": "CVE-2021-1392",
"trust": 0.1,
"value": "LOW"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-374446"
},
{
"db": "VULMON",
"id": "CVE-2021-1392"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202103-1409"
},
{
"db": "NVD",
"id": "CVE-2021-1392"
},
{
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device. Cisco IOS and IOS XE Exists in an inadequate protection of credentials.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. Pillow is a Python-based image processing library. \nThere is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. Both Cisco IOS and IOS XE are a set of operating systems developed by Cisco for its network equipment",
"sources": [
{
"db": "NVD",
"id": "CVE-2021-1392"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "VULHUB",
"id": "VHN-374446"
},
{
"db": "VULMON",
"id": "CVE-2021-1392"
}
],
"trust": 2.34
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2021-1392",
"trust": 2.6
},
{
"db": "JVN",
"id": "JVNVU99743643",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772",
"trust": 0.8
},
{
"db": "CS-HELP",
"id": "SB2021041363",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2021042150",
"trust": 0.6
},
{
"db": "ICS CERT",
"id": "ICSA-21-110-02",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-202103-1409",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-374446",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2021-1392",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-374446"
},
{
"db": "VULMON",
"id": "CVE-2021-1392"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202103-1409"
},
{
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"id": "VAR-202103-0537",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-374446"
}
],
"trust": 0.01
},
"last_update_date": "2024-11-23T21:19:00.334000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-XE-SAP-OPLbze68",
"trust": 0.8,
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
},
{
"title": "Cisco IOS and IOS XE Security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=145711"
},
{
"title": "Cisco: Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-XE-SAP-OPLbze68"
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2021-1392"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "CNNVD",
"id": "CNNVD-202103-1409"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-522",
"trust": 1.1
},
{
"problemtype": "Inadequate protection of credentials (CWE-522) [NVD Evaluation ]",
"trust": 0.8
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-374446"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.9,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-xe-sap-oplbze68"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2021-1392"
},
{
"trust": 0.8,
"url": "https://jvn.jp/vu/jvnvu99743643/index.html"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021041363"
},
{
"trust": 0.6,
"url": "https://vigilance.fr/vulnerability/cisco-ios-ios-xe-multiple-vulnerabilities-34940"
},
{
"trust": 0.6,
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-110-02"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2021042150"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/522.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/198743"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-374446"
},
{
"db": "VULMON",
"id": "CVE-2021-1392"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202103-1409"
},
{
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-374446"
},
{
"db": "VULMON",
"id": "CVE-2021-1392"
},
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202103-1409"
},
{
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-03-24T00:00:00",
"db": "VULHUB",
"id": "VHN-374446"
},
{
"date": "2021-03-24T00:00:00",
"db": "VULMON",
"id": "CVE-2021-1392"
},
{
"date": "2021-11-29T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"date": "2021-04-13T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"date": "2021-03-24T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202103-1409"
},
{
"date": "2021-03-24T20:15:14.057000",
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-03-29T00:00:00",
"db": "VULHUB",
"id": "VHN-374446"
},
{
"date": "2021-03-29T00:00:00",
"db": "VULMON",
"id": "CVE-2021-1392"
},
{
"date": "2021-11-29T09:16:00",
"db": "JVNDB",
"id": "JVNDB-2021-004772"
},
{
"date": "2021-04-14T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"date": "2021-04-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-202103-1409"
},
{
"date": "2024-11-21T05:44:14.933000",
"db": "NVD",
"id": "CVE-2021-1392"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202103-1409"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco\u00a0IOS\u00a0 and \u00a0IOS\u00a0XE\u00a0 Vulnerability regarding inadequate protection of credentials in",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2021-004772"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "other",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-202104-975"
},
{
"db": "CNNVD",
"id": "CNNVD-202103-1409"
}
],
"trust": 1.2
}
}
fkie_cve-2021-1392
Vulnerability from fkie_nvd
Published
2021-03-24 20:15
Modified
2024-11-21 05:44
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| cisco | ios | 15.0\(1\)ey | |
| cisco | ios | 15.0\(1\)ey1 | |
| cisco | ios | 15.0\(1\)ey2 | |
| cisco | ios | 15.1\(3\)svs | |
| cisco | ios | 15.1\(3\)svt1 | |
| cisco | ios | 15.2\(1\)ey | |
| cisco | ios | 15.2\(2\)e | |
| cisco | ios | 15.2\(2\)e1 | |
| cisco | ios | 15.2\(2\)e2 | |
| cisco | ios | 15.2\(2\)e3 | |
| cisco | ios | 15.2\(2\)e4 | |
| cisco | ios | 15.2\(2\)e5 | |
| cisco | ios | 15.2\(2\)e5a | |
| cisco | ios | 15.2\(2\)e5b | |
| cisco | ios | 15.2\(2\)e6 | |
| cisco | ios | 15.2\(2\)e7 | |
| cisco | ios | 15.2\(2\)e7b | |
| cisco | ios | 15.2\(2\)e8 | |
| cisco | ios | 15.2\(2\)e9 | |
| cisco | ios | 15.2\(2\)e10 | |
| cisco | ios | 15.2\(2\)ea | |
| cisco | ios | 15.2\(2\)ea1 | |
| cisco | ios | 15.2\(2\)ea2 | |
| cisco | ios | 15.2\(2\)ea3 | |
| cisco | ios | 15.2\(2\)eb | |
| cisco | ios | 15.2\(2\)eb1 | |
| cisco | ios | 15.2\(2\)eb2 | |
| cisco | ios | 15.2\(2a\)e2 | |
| cisco | ios | 15.2\(2b\)e | |
| cisco | ios | 15.2\(3\)e1 | |
| cisco | ios | 15.2\(3\)e2 | |
| cisco | ios | 15.2\(3\)e3 | |
| cisco | ios | 15.2\(3\)e4 | |
| cisco | ios | 15.2\(3\)e5 | |
| cisco | ios | 15.2\(3\)ea | |
| cisco | ios | 15.2\(4\)e5a | |
| cisco | ios | 15.2\(4\)ea | |
| cisco | ios | 15.2\(4\)ea1 | |
| cisco | ios | 15.2\(4\)ea2 | |
| cisco | ios | 15.2\(4\)ea3 | |
| cisco | ios | 15.2\(4\)ea4 | |
| cisco | ios | 15.2\(4\)ea5 | |
| cisco | ios | 15.2\(4\)ea6 | |
| cisco | ios | 15.2\(4\)ea7 | |
| cisco | ios | 15.2\(4\)ea8 | |
| cisco | ios | 15.2\(4\)ea9 | |
| cisco | ios | 15.2\(4\)ea9a | |
| cisco | ios | 15.2\(4\)ea10 | |
| cisco | ios | 15.2\(4\)ec1 | |
| cisco | ios | 15.2\(4\)ec2 | |
| cisco | ios | 15.2\(4\)jaz | |
| cisco | ios | 15.2\(5\)e | |
| cisco | ios | 15.2\(5\)e1 | |
| cisco | ios | 15.2\(5\)e2 | |
| cisco | ios | 15.2\(5\)e2b | |
| cisco | ios | 15.2\(5\)e2c | |
| cisco | ios | 15.2\(5\)ea | |
| cisco | ios | 15.2\(5a\)e1 | |
| cisco | ios | 15.2\(6\)e | |
| cisco | ios | 15.2\(6\)e0a | |
| cisco | ios | 15.2\(6\)e0c | |
| cisco | ios | 15.2\(6\)e1 | |
| cisco | ios | 15.2\(6\)e1a | |
| cisco | ios | 15.2\(6\)e1s | |
| cisco | ios | 15.2\(7\)e0b | |
| cisco | ios | 15.2\(7a\)e0b | |
| cisco | ios | 15.2\(7b\)e0b | |
| cisco | ios | 15.3\(3\)ja1 | |
| cisco | ios | 15.3\(3\)ja4 | |
| cisco | ios | 15.3\(3\)ja5 | |
| cisco | ios | 15.3\(3\)ja6 | |
| cisco | ios | 15.3\(3\)ja7 | |
| cisco | ios | 15.3\(3\)ja8 | |
| cisco | ios | 15.3\(3\)ja10 | |
| cisco | ios | 15.3\(3\)ja11 | |
| cisco | ios | 15.3\(3\)ja12 | |
| cisco | ios | 15.3\(3\)jaa | |
| cisco | ios | 15.3\(3\)jax | |
| cisco | ios | 15.3\(3\)jax1 | |
| cisco | ios | 15.3\(3\)jax2 | |
| cisco | ios | 15.3\(3\)jb | |
| cisco | ios | 15.3\(3\)jbb | |
| cisco | ios | 15.3\(3\)jbb1 | |
| cisco | ios | 15.3\(3\)jbb2 | |
| cisco | ios | 15.3\(3\)jbb4 | |
| cisco | ios | 15.3\(3\)jbb5 | |
| cisco | ios | 15.3\(3\)jbb6 | |
| cisco | ios | 15.3\(3\)jbb6a | |
| cisco | ios | 15.3\(3\)jbb8 | |
| cisco | ios | 15.3\(3\)jc | |
| cisco | ios | 15.3\(3\)jc1 | |
| cisco | ios | 15.3\(3\)jc2 | |
| cisco | ios | 15.3\(3\)jc3 | |
| cisco | ios | 15.3\(3\)jc4 | |
| cisco | ios | 15.3\(3\)jc5 | |
| cisco | ios | 15.3\(3\)jc6 | |
| cisco | ios | 15.3\(3\)jc8 | |
| cisco | ios | 15.3\(3\)jc9 | |
| cisco | ios | 15.3\(3\)jc14 | |
| cisco | ios | 15.3\(3\)jd | |
| cisco | ios | 15.3\(3\)jd2 | |
| cisco | ios | 15.3\(3\)jd3 | |
| cisco | ios | 15.3\(3\)jd4 | |
| cisco | ios | 15.3\(3\)jd5 | |
| cisco | ios | 15.3\(3\)jd6 | |
| cisco | ios | 15.3\(3\)jd7 | |
| cisco | ios | 15.3\(3\)jd8 | |
| cisco | ios | 15.3\(3\)jd9 | |
| cisco | ios | 15.3\(3\)jd11 | |
| cisco | ios | 15.3\(3\)jd12 | |
| cisco | ios | 15.3\(3\)jd13 | |
| cisco | ios | 15.3\(3\)jd14 | |
| cisco | ios | 15.3\(3\)jd16 | |
| cisco | ios | 15.3\(3\)jd17 | |
| cisco | ios | 15.3\(3\)je | |
| cisco | ios | 15.3\(3\)jf | |
| cisco | ios | 15.3\(3\)jf1 | |
| cisco | ios | 15.3\(3\)jf2 | |
| cisco | ios | 15.3\(3\)jf4 | |
| cisco | ios | 15.3\(3\)jf5 | |
| cisco | ios | 15.3\(3\)jf6 | |
| cisco | ios | 15.3\(3\)jf7 | |
| cisco | ios | 15.3\(3\)jf8 | |
| cisco | ios | 15.3\(3\)jf9 | |
| cisco | ios | 15.3\(3\)jf10 | |
| cisco | ios | 15.3\(3\)jf11 | |
| cisco | ios | 15.3\(3\)jf12 | |
| cisco | ios | 15.3\(3\)jf12i | |
| cisco | ios | 15.3\(3\)jf13 | |
| cisco | ios | 15.3\(3\)jg | |
| cisco | ios | 15.3\(3\)jg1 | |
| cisco | ios | 15.3\(3\)jh | |
| cisco | ios | 15.3\(3\)jh1 | |
| cisco | ios | 15.3\(3\)ji1 | |
| cisco | ios | 15.3\(3\)ji3 | |
| cisco | ios | 15.3\(3\)ji4 | |
| cisco | ios | 15.3\(3\)ji5 | |
| cisco | ios | 15.3\(3\)ji6 | |
| cisco | ios | 15.3\(3\)jj | |
| cisco | ios | 15.3\(3\)jj1 | |
| cisco | ios | 15.3\(3\)jk | |
| cisco | ios | 15.3\(3\)jk1 | |
| cisco | ios | 15.3\(3\)jk1t | |
| cisco | ios | 15.3\(3\)jk2 | |
| cisco | ios | 15.3\(3\)jk2a | |
| cisco | ios | 15.3\(3\)jk3 | |
| cisco | ios | 15.3\(3\)jk4 | |
| cisco | ios | 15.3\(3\)jn | |
| cisco | ios | 15.3\(3\)jn3 | |
| cisco | ios | 15.3\(3\)jn4 | |
| cisco | ios | 15.3\(3\)jn6 | |
| cisco | ios | 15.3\(3\)jn7 | |
| cisco | ios | 15.3\(3\)jn8 | |
| cisco | ios | 15.3\(3\)jn9 | |
| cisco | ios | 15.3\(3\)jn11 | |
| cisco | ios | 15.3\(3\)jn13 | |
| cisco | ios | 15.3\(3\)jn14 | |
| cisco | ios | 15.3\(3\)jn15 | |
| cisco | ios | 15.3\(3\)jnb | |
| cisco | ios | 15.3\(3\)jnb1 | |
| cisco | ios | 15.3\(3\)jnb2 | |
| cisco | ios | 15.3\(3\)jnb3 | |
| cisco | ios | 15.3\(3\)jnb4 | |
| cisco | ios | 15.3\(3\)jnb5 | |
| cisco | ios | 15.3\(3\)jnb6 | |
| cisco | ios | 15.3\(3\)jnc | |
| cisco | ios | 15.3\(3\)jnc1 | |
| cisco | ios | 15.3\(3\)jnc2 | |
| cisco | ios | 15.3\(3\)jnc3 | |
| cisco | ios | 15.3\(3\)jnc4 | |
| cisco | ios | 15.3\(3\)jnd | |
| cisco | ios | 15.3\(3\)jnd1 | |
| cisco | ios | 15.3\(3\)jnd2 | |
| cisco | ios | 15.3\(3\)jnd3 | |
| cisco | ios | 15.3\(3\)jnp | |
| cisco | ios | 15.3\(3\)jnp1 | |
| cisco | ios | 15.3\(3\)jnp3 | |
| cisco | ios | 15.3\(3\)jpb | |
| cisco | ios | 15.3\(3\)jpb1 | |
| cisco | ios | 15.3\(3\)jpc | |
| cisco | ios | 15.3\(3\)jpc1 | |
| cisco | ios | 15.3\(3\)jpc2 | |
| cisco | ios | 15.3\(3\)jpc3 | |
| cisco | ios | 15.3\(3\)jpc5 | |
| cisco | ios | 15.3\(3\)jpd | |
| cisco | ios_xe | 3.3.0xo | |
| cisco | ios_xe | 3.3.1xo | |
| cisco | ios_xe | 3.3.2xo | |
| cisco | ios_xe | 3.6.5be | |
| cisco | ios_xe | 3.7.4e | |
| cisco | ios_xe | 3.7.5e | |
| cisco | ios_xe | 16.9.1 | |
| cisco | ios_xe | 16.9.1d | |
| cisco | ios_xe | 16.10.1 | |
| cisco | ios_xe | 16.10.1e | |
| cisco | ios_xe | 16.11.1 | |
| cisco | ios_xe | 16.11.1a | |
| cisco | ios_xe | 16.11.1c | |
| cisco | ios_xe | 16.11.1s | |
| cisco | ios_xe | 16.11.2 | |
| cisco | ios_xe | 16.12.1 | |
| cisco | ios_xe | 16.12.1c | |
| cisco | ios_xe | 16.12.1s | |
| cisco | ios_xe | 16.12.2 | |
| cisco | ios_xe | 16.12.2s | |
| cisco | ios_xe | 16.12.2t | |
| cisco | ios_xe | 16.12.3 | |
| cisco | ios_xe | 16.12.3s | |
| cisco | ios_xe | 16.12.4 | |
| cisco | ios_xe | 17.1.1 | |
| cisco | ios_xe | 17.1.1s | |
| cisco | ios_xe | 17.1.1t | |
| cisco | ios_xe | 17.1.2 | |
| cisco | ios_xe | 17.2.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios:15.0\\(1\\)ey:*:*:*:*:*:*:*",
"matchCriteriaId": "5AF55C0A-768F-445A-AF40-2B553363AF18",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.0\\(1\\)ey1:*:*:*:*:*:*:*",
"matchCriteriaId": "C9E7D5CC-521E-4B2A-B6DB-D2A49D31DE4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.0\\(1\\)ey2:*:*:*:*:*:*:*",
"matchCriteriaId": "10D75DC6-D7B1-46D2-ABEF-97D908992FF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.1\\(3\\)svs:*:*:*:*:*:*:*",
"matchCriteriaId": "46EC35AA-4BD3-4FBB-878D-3313D37D9AAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.1\\(3\\)svt1:*:*:*:*:*:*:*",
"matchCriteriaId": "66BD52DF-E396-415D-B46E-A8814579A01F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(1\\)ey:*:*:*:*:*:*:*",
"matchCriteriaId": "2D601E90-6F2A-4C66-97A2-152031C88DB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e:*:*:*:*:*:*:*",
"matchCriteriaId": "D3A156FE-590E-49DB-819D-4103D629829D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e1:*:*:*:*:*:*:*",
"matchCriteriaId": "C1F6C767-042C-4277-90F4-F81D9AFFF227",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e2:*:*:*:*:*:*:*",
"matchCriteriaId": "D33DB919-4F82-43C6-830A-A9D4FC043B42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e3:*:*:*:*:*:*:*",
"matchCriteriaId": "72782F95-948D-489B-A19A-9DAB825DFE4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e4:*:*:*:*:*:*:*",
"matchCriteriaId": "4F904CD0-8609-47F7-988C-613DE26BDBB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e5:*:*:*:*:*:*:*",
"matchCriteriaId": "AC3A39FE-69F6-4BB9-A9CE-D516A3802538",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e5a:*:*:*:*:*:*:*",
"matchCriteriaId": "AB9B7058-3467-4CCE-B9A4-71CF8143FEC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e5b:*:*:*:*:*:*:*",
"matchCriteriaId": "90447919-CC40-4CA5-A488-2FCF0F25ABE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e6:*:*:*:*:*:*:*",
"matchCriteriaId": "DEF74559-F418-48EA-9CA7-A9574CAFC97E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e7:*:*:*:*:*:*:*",
"matchCriteriaId": "A5A1ADB8-DF62-4CB6-8075-2F0956BB0126",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e7b:*:*:*:*:*:*:*",
"matchCriteriaId": "E2C787A4-4AF4-49F1-AA10-F5CF51AE17AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e8:*:*:*:*:*:*:*",
"matchCriteriaId": "EB0F2B2A-F273-4166-826F-88B54A480BB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e9:*:*:*:*:*:*:*",
"matchCriteriaId": "194D54FC-F399-4C86-AE04-FB3FD828DDA0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)e10:*:*:*:*:*:*:*",
"matchCriteriaId": "D1C85E0E-A920-4501-AC23-0F7534CF88EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea:*:*:*:*:*:*:*",
"matchCriteriaId": "50CB7858-C857-41E2-9E5D-9368EEC2825E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea1:*:*:*:*:*:*:*",
"matchCriteriaId": "10438F4B-281D-4C2F-B4C3-DC3D47B0033A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea2:*:*:*:*:*:*:*",
"matchCriteriaId": "681E360E-2287-4BE7-8228-77C235DFA901",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)ea3:*:*:*:*:*:*:*",
"matchCriteriaId": "81800178-449A-4B61-9611-5FB2FC4DBC75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)eb:*:*:*:*:*:*:*",
"matchCriteriaId": "F7316ED4-FABD-49E0-AA21-394D327435F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)eb1:*:*:*:*:*:*:*",
"matchCriteriaId": "24A56EF3-4E88-4220-846A-A9BE1E496311",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2\\)eb2:*:*:*:*:*:*:*",
"matchCriteriaId": "DAA77FEC-51CE-4D0B-9D1F-7BF1A28D30A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2a\\)e2:*:*:*:*:*:*:*",
"matchCriteriaId": "5DDB0B25-95E0-4796-A56F-1A59EF7EA283",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(2b\\)e:*:*:*:*:*:*:*",
"matchCriteriaId": "0687FD87-BAED-4776-9B94-3C9EA7CCE79A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e1:*:*:*:*:*:*:*",
"matchCriteriaId": "757000B2-A8EB-464A-9A2D-EC4D920A0569",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e2:*:*:*:*:*:*:*",
"matchCriteriaId": "102BF855-ED1C-4D26-85D9-74B2BE0E9CF4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e3:*:*:*:*:*:*:*",
"matchCriteriaId": "B42618DF-F118-41A7-96E5-24C229DA020E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e4:*:*:*:*:*:*:*",
"matchCriteriaId": "26F6FC68-BF4A-4511-8B46-A93C81E349B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(3\\)e5:*:*:*:*:*:*:*",
"matchCriteriaId": "7582DA8C-2360-4E8C-90F8-6194F269CD1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(3\\)ea:*:*:*:*:*:*:*",
"matchCriteriaId": "A9D6FBCE-F1F0-437B-A9B0-57F717C974F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)e5a:*:*:*:*:*:*:*",
"matchCriteriaId": "B5BDAB63-EA0E-486D-B146-7E0060F70066",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea:*:*:*:*:*:*:*",
"matchCriteriaId": "BBF92BEC-AA46-46DF-8C1E-956F3E506E69",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea1:*:*:*:*:*:*:*",
"matchCriteriaId": "8C226FE9-61A0-4873-B277-1B8ADB397B32",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea2:*:*:*:*:*:*:*",
"matchCriteriaId": "2D9C3A73-E4E1-4C0F-86D4-B796069E4EE7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea3:*:*:*:*:*:*:*",
"matchCriteriaId": "FD5BD905-75C3-47AE-8D19-6225BD808B37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea4:*:*:*:*:*:*:*",
"matchCriteriaId": "56DE452A-6852-4879-9187-8A152E6E260E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea5:*:*:*:*:*:*:*",
"matchCriteriaId": "9A6367C8-C9D7-4965-BD9C-1DD4A2FCE2D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea6:*:*:*:*:*:*:*",
"matchCriteriaId": "BD3047E4-BCC3-41A7-9DCD-15C25D14EC44",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea7:*:*:*:*:*:*:*",
"matchCriteriaId": "7785E177-C04E-4170-9C35-B4259D14EA85",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea8:*:*:*:*:*:*:*",
"matchCriteriaId": "8CAE727E-E552-4222-8FF0-6146A813BDEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea9:*:*:*:*:*:*:*",
"matchCriteriaId": "C7850295-C728-4448-ABA7-D01397DBBE5A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea9a:*:*:*:*:*:*:*",
"matchCriteriaId": "7C104A47-53EE-47FC-BAE5-21925BEE98E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ea10:*:*:*:*:*:*:*",
"matchCriteriaId": "F09A26FF-6A8F-4D73-B3E8-0333F994D1B3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ec1:*:*:*:*:*:*:*",
"matchCriteriaId": "65589A68-58A4-4BD4-8A26-C629AE610953",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)ec2:*:*:*:*:*:*:*",
"matchCriteriaId": "C8A64C8F-6380-47CA-8116-E3438B953F84",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)jaz:*:*:*:*:*:*:*",
"matchCriteriaId": "BAE38B2F-F6AB-44E2-89BE-F71796FE1942",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e:*:*:*:*:*:*:*",
"matchCriteriaId": "F112DE64-0042-4FB9-945D-3107468193E5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e1:*:*:*:*:*:*:*",
"matchCriteriaId": "E027FB12-862F-413E-AA2B-4BBD90AE3650",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e2:*:*:*:*:*:*:*",
"matchCriteriaId": "DD28874B-148A-4299-9AA1-67A550B25F8C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e2b:*:*:*:*:*:*:*",
"matchCriteriaId": "45B80CBC-961F-4EE8-A998-C0A827151EDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e2c:*:*:*:*:*:*:*",
"matchCriteriaId": "E7131776-5DEB-4B96-8483-B81B538E24FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(5\\)ea:*:*:*:*:*:*:*",
"matchCriteriaId": "BE991877-18E0-4374-A441-C2316085CCA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(5a\\)e1:*:*:*:*:*:*:*",
"matchCriteriaId": "757EB1A1-4764-4108-9AB1-F33CF9CEE574",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e:*:*:*:*:*:*:*",
"matchCriteriaId": "199DCF1B-8A1E-47CC-87A6-64E6F21D8886",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e0a:*:*:*:*:*:*:*",
"matchCriteriaId": "C5B78669-3B28-4F1D-993D-85282A7D0E96",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e0c:*:*:*:*:*:*:*",
"matchCriteriaId": "DD05109E-1183-419D-96A1-9CD5EA5ECC3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e1:*:*:*:*:*:*:*",
"matchCriteriaId": "D3C73A3A-4B84-476F-AC3C-81DCB527E29A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e1a:*:*:*:*:*:*:*",
"matchCriteriaId": "7551128E-9E23-4C42-A681-6BE64D284C93",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(6\\)e1s:*:*:*:*:*:*:*",
"matchCriteriaId": "0EB7BFE1-06ED-4B45-8B4F-2B309B8D6342",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(7\\)e0b:*:*:*:*:*:*:*",
"matchCriteriaId": "A4C12918-E5BB-465E-9DA4-06B7351DD805",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(7a\\)e0b:*:*:*:*:*:*:*",
"matchCriteriaId": "1374E243-4EC2-4A81-991C-B5705135CAD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.2\\(7b\\)e0b:*:*:*:*:*:*:*",
"matchCriteriaId": "6ECA6101-94BA-4209-8243-A56AF02963EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja1:*:*:*:*:*:*:*",
"matchCriteriaId": "71493AA2-49E9-4FF5-AC29-DC2426973EC6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja4:*:*:*:*:*:*:*",
"matchCriteriaId": "85F96295-2E72-4C23-B973-791B4A2B63F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja5:*:*:*:*:*:*:*",
"matchCriteriaId": "A8555124-BAFA-45D4-8208-ED1172D55F53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja6:*:*:*:*:*:*:*",
"matchCriteriaId": "A313DD0B-C9A9-4731-A486-EE1BCBA3B1F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja7:*:*:*:*:*:*:*",
"matchCriteriaId": "04B9D9B5-807F-494B-9ED2-7F4BDB32432A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja8:*:*:*:*:*:*:*",
"matchCriteriaId": "6089D71A-8D46-4819-80E9-8A29BCA47EDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja10:*:*:*:*:*:*:*",
"matchCriteriaId": "21678FDA-D2B4-4041-A52D-C7AA562FD086",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja11:*:*:*:*:*:*:*",
"matchCriteriaId": "F6EB0CFF-88F5-4193-8896-B3E4BA8D1AD7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ja12:*:*:*:*:*:*:*",
"matchCriteriaId": "4E532352-99A6-4E45-B0E7-7F04DA411820",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jaa:*:*:*:*:*:*:*",
"matchCriteriaId": "D3BD12E4-2ADA-4E3D-A12D-FF0E1031D677",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jax:*:*:*:*:*:*:*",
"matchCriteriaId": "1AAC643B-AA58-42EA-A777-52FCF6065F9B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jax1:*:*:*:*:*:*:*",
"matchCriteriaId": "9CFB57C3-6CDF-46D1-858D-D5234956653D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jax2:*:*:*:*:*:*:*",
"matchCriteriaId": "330125E6-3645-40B5-8E64-009B622090B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jb:*:*:*:*:*:*:*",
"matchCriteriaId": "02D874DF-54A1-47C7-B3D9-A9CE41A42418",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb:*:*:*:*:*:*:*",
"matchCriteriaId": "1485E3A5-A586-408A-8325-7572779DD0E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb1:*:*:*:*:*:*:*",
"matchCriteriaId": "2244E538-6B35-44E0-B93E-60B773745A99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb2:*:*:*:*:*:*:*",
"matchCriteriaId": "F9DB6B2A-19D2-4684-B07F-5D42EC850A8E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb4:*:*:*:*:*:*:*",
"matchCriteriaId": "DDC1C381-4795-4992-BE3C-9615E005DE46",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb5:*:*:*:*:*:*:*",
"matchCriteriaId": "80188F84-30DE-46AC-8E0C-984126B77CC6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb6:*:*:*:*:*:*:*",
"matchCriteriaId": "DECBF0A9-D84F-40A2-AC61-A9C59C819787",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb6a:*:*:*:*:*:*:*",
"matchCriteriaId": "C9F129CF-FB92-49E9-BD86-90DDB8218FF5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jbb8:*:*:*:*:*:*:*",
"matchCriteriaId": "9C288D58-F765-4403-BF18-CC0A62B1AA60",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc:*:*:*:*:*:*:*",
"matchCriteriaId": "D4CF8146-FBF4-48F9-8BF0-61ACB2B3524E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc1:*:*:*:*:*:*:*",
"matchCriteriaId": "27357CD7-3E9E-4EF2-A5D4-A6BC44952FD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc2:*:*:*:*:*:*:*",
"matchCriteriaId": "4246ACD7-DBCF-4CE6-B9B8-D44AAB2DEC8C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc3:*:*:*:*:*:*:*",
"matchCriteriaId": "1046E19B-DB53-418A-BFEC-5CD4492E6626",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc4:*:*:*:*:*:*:*",
"matchCriteriaId": "0062D992-D990-4EC9-BABD-2EFFF84254D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc5:*:*:*:*:*:*:*",
"matchCriteriaId": "CC81B74C-4F63-46E8-ACF4-EB707853580A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc6:*:*:*:*:*:*:*",
"matchCriteriaId": "A3C779C9-3B83-4B26-8942-B8475FB3B5D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc8:*:*:*:*:*:*:*",
"matchCriteriaId": "02ACA99D-5784-4F5F-AB83-F55DF8774E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc9:*:*:*:*:*:*:*",
"matchCriteriaId": "DFFB9F99-8751-442B-9419-C2AB522D2ADC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jc14:*:*:*:*:*:*:*",
"matchCriteriaId": "5E33FD88-8183-40EF-97A1-2766A4BBFBE5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd:*:*:*:*:*:*:*",
"matchCriteriaId": "34D7D48C-9FA1-45DB-B206-437E8ECBF53D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd2:*:*:*:*:*:*:*",
"matchCriteriaId": "3626B216-43E8-4E60-96E5-7CAA0CB67F65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd3:*:*:*:*:*:*:*",
"matchCriteriaId": "D9B59D8B-E71A-4671-BA0B-00E56498E280",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd4:*:*:*:*:*:*:*",
"matchCriteriaId": "956C0089-E5AE-4289-B6D7-A8AB3C39AAA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd5:*:*:*:*:*:*:*",
"matchCriteriaId": "333468BC-41F0-46ED-9561-D7D2CE6AC267",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd6:*:*:*:*:*:*:*",
"matchCriteriaId": "09DBAA17-61D7-4EE4-A70D-A7200DF36C58",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd7:*:*:*:*:*:*:*",
"matchCriteriaId": "DF17EADC-5812-47FD-A243-287837CEC1E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd8:*:*:*:*:*:*:*",
"matchCriteriaId": "5733BCBA-B3CE-4B18-9F7B-51CE17AAEF89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd9:*:*:*:*:*:*:*",
"matchCriteriaId": "BE8CF99C-B097-4964-B07C-FBB28EB37681",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd11:*:*:*:*:*:*:*",
"matchCriteriaId": "79DC64FF-E6F4-4FEE-87A2-14DF0DA55B23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd12:*:*:*:*:*:*:*",
"matchCriteriaId": "CBA4B81F-7FCA-4666-8602-F6C77A4673E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd13:*:*:*:*:*:*:*",
"matchCriteriaId": "E2403659-B7AD-40CE-AF88-FE2BEF0929E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd14:*:*:*:*:*:*:*",
"matchCriteriaId": "7D1F53B1-E9FA-4480-8314-C531073B25CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd16:*:*:*:*:*:*:*",
"matchCriteriaId": "498030A3-0AFF-4D74-98D6-74C9447E5B79",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd17:*:*:*:*:*:*:*",
"matchCriteriaId": "BDCBDB71-59D7-481E-84FF-8772930F857B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)je:*:*:*:*:*:*:*",
"matchCriteriaId": "2955A319-04AC-4D0C-80B7-0C90503908C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf:*:*:*:*:*:*:*",
"matchCriteriaId": "B0EF13B6-A743-41D1-BB31-F17C3586C8AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf1:*:*:*:*:*:*:*",
"matchCriteriaId": "0B4F7A75-1D0B-4F55-868C-99DBB67AE1AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf2:*:*:*:*:*:*:*",
"matchCriteriaId": "37875B18-434B-4218-BAAF-2B593E188180",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf4:*:*:*:*:*:*:*",
"matchCriteriaId": "26BAC234-D00C-4407-A1FE-E45A14D1BDAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf5:*:*:*:*:*:*:*",
"matchCriteriaId": "C42E2869-F179-49B7-A4E8-0F4E8EA953CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf6:*:*:*:*:*:*:*",
"matchCriteriaId": "7A58711A-F8C9-4F25-97D7-AE8AE64F3912",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf7:*:*:*:*:*:*:*",
"matchCriteriaId": "BF4E7B19-75DF-4811-BEE9-28E7B15ED6F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf8:*:*:*:*:*:*:*",
"matchCriteriaId": "DE3ECC04-345F-4DAE-98F7-04E082BAEC3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf9:*:*:*:*:*:*:*",
"matchCriteriaId": "6A919122-DE62-4032-80DF-F77C1D80B387",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf10:*:*:*:*:*:*:*",
"matchCriteriaId": "9C5B0248-7C59-49F7-A1BC-FE6F5A8E535B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf11:*:*:*:*:*:*:*",
"matchCriteriaId": "68958043-1212-42AF-A205-DB731ED55114",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf12:*:*:*:*:*:*:*",
"matchCriteriaId": "84AE6EB6-EF3F-4DE2-ABEC-71F9010BFF0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf12i:*:*:*:*:*:*:*",
"matchCriteriaId": "DD6F56B5-BE84-434D-AEC8-EB0764A832FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf13:*:*:*:*:*:*:*",
"matchCriteriaId": "06216CEE-F15D-4B31-A5A3-B2C226E2D25B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg:*:*:*:*:*:*:*",
"matchCriteriaId": "746D8C22-4A3E-4EDB-96A1-923EFF2FD5C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg1:*:*:*:*:*:*:*",
"matchCriteriaId": "8BB02DEB-81D4-4A05-BDD5-3B8BC7184159",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jh:*:*:*:*:*:*:*",
"matchCriteriaId": "B18C3383-28B0-435E-AF08-9739DADAE4E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jh1:*:*:*:*:*:*:*",
"matchCriteriaId": "08C9CA39-3515-4226-8453-0B5FC62546D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji1:*:*:*:*:*:*:*",
"matchCriteriaId": "19AAE85B-A2E3-4758-9DAF-B4BD7C667DA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji3:*:*:*:*:*:*:*",
"matchCriteriaId": "1658FFCF-7433-4AFB-9D59-BD6CC14A4D28",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji4:*:*:*:*:*:*:*",
"matchCriteriaId": "D2CA6116-2C6B-431B-BA88-63B180A00DA0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji5:*:*:*:*:*:*:*",
"matchCriteriaId": "C2377350-7B69-4C49-889A-D63A3E4C1002",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)ji6:*:*:*:*:*:*:*",
"matchCriteriaId": "2913C352-E21F-4ECE-8A13-BA21CC00D02E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jj:*:*:*:*:*:*:*",
"matchCriteriaId": "8AD90F4A-2A86-4A98-A157-D93C382717A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jj1:*:*:*:*:*:*:*",
"matchCriteriaId": "B8FB2D76-9BE1-4C39-A3B0-BD6F45E20E11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk:*:*:*:*:*:*:*",
"matchCriteriaId": "1739E9AD-154D-40C2-A761-F7133BC06C3D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk1:*:*:*:*:*:*:*",
"matchCriteriaId": "FA700809-C25D-49F8-B930-7459F8AE9DCE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk1t:*:*:*:*:*:*:*",
"matchCriteriaId": "2AEB7B3E-4E91-477F-BD62-9A28578CCA80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk2:*:*:*:*:*:*:*",
"matchCriteriaId": "58C5D255-C0FE-47E6-A920-3539306F9845",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk2a:*:*:*:*:*:*:*",
"matchCriteriaId": "7C8DF3B4-A424-4B70-9116-28E2C4DFB776",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk3:*:*:*:*:*:*:*",
"matchCriteriaId": "4677B840-6636-4D8C-9E1C-47FEB8F3116A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk4:*:*:*:*:*:*:*",
"matchCriteriaId": "917D5477-E47E-4A01-979A-C9A0993BE34B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn:*:*:*:*:*:*:*",
"matchCriteriaId": "32E6CCE7-88BB-4F4F-9253-EC67B5076767",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn3:*:*:*:*:*:*:*",
"matchCriteriaId": "2EBD0947-656E-4CB0-9B4F-1A1F7AA360C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn4:*:*:*:*:*:*:*",
"matchCriteriaId": "A5D6C6EE-CFD9-49A9-8784-498560847737",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn6:*:*:*:*:*:*:*",
"matchCriteriaId": "5187A9D2-A057-40E7-84E1-89BE32AFA95C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn7:*:*:*:*:*:*:*",
"matchCriteriaId": "FFEE60A6-9E75-4B20-A06D-411E774511B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn8:*:*:*:*:*:*:*",
"matchCriteriaId": "1451BB33-6BE0-4F4A-A193-14E13DECEE20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn9:*:*:*:*:*:*:*",
"matchCriteriaId": "5F0FC09E-8C60-4EAC-B729-3BE3524E6F08",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn11:*:*:*:*:*:*:*",
"matchCriteriaId": "DD355DC3-51F1-4CEA-98B1-E08EEE03BFD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn13:*:*:*:*:*:*:*",
"matchCriteriaId": "49B4A0C4-B0CF-4040-9EB0-1529BCAD0DF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn14:*:*:*:*:*:*:*",
"matchCriteriaId": "4071E320-789E-4E1D-982B-C265F4228FEA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jn15:*:*:*:*:*:*:*",
"matchCriteriaId": "8EC38DE9-5D5D-452A-AC42-C1D24418FDB4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb:*:*:*:*:*:*:*",
"matchCriteriaId": "9BC3CD43-F30A-484B-9285-D925C1262212",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb1:*:*:*:*:*:*:*",
"matchCriteriaId": "F807A36A-9363-40F1-9B20-E5C4D503EB1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb2:*:*:*:*:*:*:*",
"matchCriteriaId": "5200C1CD-DEAB-44FD-970D-098F3E01F36B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb3:*:*:*:*:*:*:*",
"matchCriteriaId": "E8E71841-512D-483C-A911-86EA745AC00E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb4:*:*:*:*:*:*:*",
"matchCriteriaId": "BBB655C5-2D7B-4ED5-89D6-4ED613CF3934",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb5:*:*:*:*:*:*:*",
"matchCriteriaId": "BAE556AB-093C-4992-8F5B-F240526AAA64",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnb6:*:*:*:*:*:*:*",
"matchCriteriaId": "4BA0BCD1-4E75-4F39-B960-4B6B1B357442",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc:*:*:*:*:*:*:*",
"matchCriteriaId": "F17F3285-80E8-4BE5-8704-3379CF326601",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc1:*:*:*:*:*:*:*",
"matchCriteriaId": "9669DF61-DDC5-498D-906A-494D56BAE450",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc2:*:*:*:*:*:*:*",
"matchCriteriaId": "00B0502B-3363-4F3C-A147-8888B894635B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc3:*:*:*:*:*:*:*",
"matchCriteriaId": "689327CA-F302-49FC-9365-F09E4A60E8FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnc4:*:*:*:*:*:*:*",
"matchCriteriaId": "571ECF0D-06C6-4371-891C-FB68A3093F53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd:*:*:*:*:*:*:*",
"matchCriteriaId": "8A38CF1F-37D9-4CBD-8B98-C24637FF7F56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd1:*:*:*:*:*:*:*",
"matchCriteriaId": "0886F6DC-C590-48A0-BE27-6CD778EB37FA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd2:*:*:*:*:*:*:*",
"matchCriteriaId": "8552242D-0A93-4841-83F9-EA4D7F58938E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnd3:*:*:*:*:*:*:*",
"matchCriteriaId": "4D0667D1-B4EC-4FF0-AC5D-9C1B04D84099",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp:*:*:*:*:*:*:*",
"matchCriteriaId": "F45D0EFD-784A-4CDB-8FDB-41F6869B4735",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp1:*:*:*:*:*:*:*",
"matchCriteriaId": "942CC01D-ED6E-4731-A61B-75CDF219F760",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp3:*:*:*:*:*:*:*",
"matchCriteriaId": "59CA018E-5160-40AE-953D-9559F23D2EAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb:*:*:*:*:*:*:*",
"matchCriteriaId": "BBA595EF-8718-4477-8EEC-EA948C14F091",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb1:*:*:*:*:*:*:*",
"matchCriteriaId": "4CDCADB1-EA01-41AF-9D96-A6EDE42D7A9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc:*:*:*:*:*:*:*",
"matchCriteriaId": "13763901-2D7B-485D-A957-E30587BCEB88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc1:*:*:*:*:*:*:*",
"matchCriteriaId": "8B213166-77E2-4E13-8769-FA8AF6EEC33A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc2:*:*:*:*:*:*:*",
"matchCriteriaId": "7A3C0371-223A-433C-B8A3-C24A499EB82F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc3:*:*:*:*:*:*:*",
"matchCriteriaId": "A066A001-830B-4407-A5CD-AB99059C190E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc5:*:*:*:*:*:*:*",
"matchCriteriaId": "83B45095-526D-4BC5-A16B-6B5741F07FD8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpd:*:*:*:*:*:*:*",
"matchCriteriaId": "C4A9F7DF-BB18-46FC-B471-3FC41F4CCD01",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.3.0xo:*:*:*:*:*:*:*",
"matchCriteriaId": "930678B3-1527-4967-9D8F-27FC0DA060AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.3.1xo:*:*:*:*:*:*:*",
"matchCriteriaId": "58A34268-7618-48D2-8872-27B5B624543B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.3.2xo:*:*:*:*:*:*:*",
"matchCriteriaId": "C2017A75-CC29-4161-85CB-7A531E5ABB3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.6.5be:*:*:*:*:*:*:*",
"matchCriteriaId": "C0AD00E6-A155-4CCB-B329-7B536BEBC976",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.7.4e:*:*:*:*:*:*:*",
"matchCriteriaId": "355F4945-4FFA-469F-A799-815F371C637B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.7.5e:*:*:*:*:*:*:*",
"matchCriteriaId": "1432B59F-5A66-4A5A-B3F7-E297700ED9C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "119A964D-ABC8-424D-8097-85B832A833BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.9.1d:*:*:*:*:*:*:*",
"matchCriteriaId": "5AF5214D-9257-498F-A3EB-C4EC18E2FEB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1:*:*:*:*:*:*:*",
"matchCriteriaId": "DB6BD18B-B9BD-452F-986E-16A6668E46B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.10.1e:*:*:*:*:*:*:*",
"matchCriteriaId": "ADED0D82-2A4D-4235-BFAC-5EE2D862B652",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E91F8704-6DAD-474A-84EA-04E4AF7BB9B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "314C7763-A64D-4023-9F3F-9A821AE4151F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1c:*:*:*:*:*:*:*",
"matchCriteriaId": "FC1C85DD-69CC-4AA8-B219-651D57FC3506",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.11.1s:*:*:*:*:*:*:*",
"matchCriteriaId": "DB26AE0F-85D8-4EAB-B9BD-457DD81FF0FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.11.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B53E377A-0296-4D7A-B97C-576B0026543D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C98DED36-D4B5-48D6-964E-EEEE97936700",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1c:*:*:*:*:*:*:*",
"matchCriteriaId": "C8BEFEDA-B01A-480B-B03D-7ED5D08E4B67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1s:*:*:*:*:*:*:*",
"matchCriteriaId": "9027A528-2588-4C06-810B-5BB313FE4323",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E5019B59-508E-40B0-9C92-2C26F58E2FBE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.2s:*:*:*:*:*:*:*",
"matchCriteriaId": "1986DB1F-AD0A-42FE-8EC8-F18BA1AD4F99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.2t:*:*:*:*:*:*:*",
"matchCriteriaId": "3C6FB4DC-814D-49D2-BBE2-3861AE985A1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.3:*:*:*:*:*:*:*",
"matchCriteriaId": "D5750264-2990-4942-85F4-DB9746C5CA2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.3s:*:*:*:*:*:*:*",
"matchCriteriaId": "B9173AD6-6658-4267-AAA7-D50D0B657528",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.4:*:*:*:*:*:*:*",
"matchCriteriaId": "7F02EE9D-45B1-43D6-B05D-6FF19472216B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:17.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "E306B09C-CB48-4067-B60C-5F738555EEAC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:17.1.1s:*:*:*:*:*:*:*",
"matchCriteriaId": "4FF0DD16-D76A-45EA-B01A-20C71AEFA3B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:17.1.1t:*:*:*:*:*:*:*",
"matchCriteriaId": "4BDD0CEC-4A19-438D-B2A1-8664A1D8F3C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:17.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "89369318-2E83-489F-B872-5F2E247BBF8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:17.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "4B7EE7C7-D6C1-4C35-8C80-EAF3FC7E7EFA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device."
},
{
"lang": "es",
"value": "Una vulnerabilidad en los permisos de comando de la CLI del Software Cisco IOS y Cisco IOS XE, podr\u00eda permitir a un atacante local autenticado recuperar la contrase\u00f1a para el Protocolo industrial com\u00fan (CIP) y luego configurar remotamente el dispositivo como un usuario administrativo.\u0026#xa0;Esta vulnerabilidad se presenta porque los permisos incorrectos est\u00e1n asociados con el comando de la CLI show cip security.\u0026#xa0;Un atacante podr\u00eda explotar esta vulnerabilidad al emitir el comando para recuperar la contrase\u00f1a de CIP en un dispositivo afectado.\u0026#xa0;Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante reconfigurar el dispositivo"
}
],
"id": "CVE-2021-1392",
"lastModified": "2024-11-21T05:44:14.933",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "psirt@cisco.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-03-24T20:15:14.057",
"references": [
{
"source": "psirt@cisco.com",
"tags": [
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-SAP-OPLbze68"
}
],
"sourceIdentifier": "psirt@cisco.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-522"
}
],
"source": "psirt@cisco.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-522"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.