Vulnerability Description
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios Xe Sd-Wan | - |
| Cisco | Sd-Wan Firmware | 18.3.5 |
| Cisco | Sd-Wan Vsmart Controller Firmware | All versions |
| Cisco | Vedge 100 Router | - |
| Cisco | Vedge 1000 Router | - |
| Cisco | Vedge 100B Router | - |
| Cisco | Vedge 100M Router | - |
| Cisco | Vedge 100Wm Router | - |
| Cisco | Vedge 2000 Router | - |
| Cisco | Vedge 5000 Router | - |
| Cisco | Vedge Cloud Router | - |
| Cisco | Catalyst Sd-Wan Manager | - |
| Cisco | Sd-Wan Vbond Orchestrator | - |
Related Weaknesses (CWE)
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sVendor Advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sVendor Advisory
FAQ
What is CVE-2021-1273?
CVE-2021-1273 is a vulnerability with a CVSS score of 8.6 (HIGH). Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about thes...
How severe is CVE-2021-1273?
CVE-2021-1273 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-1273?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios Xe Sd-Wan, Cisco Sd-Wan Firmware, Cisco Sd-Wan Vsmart Controller Firmware, Cisco Vedge 100 Router, Cisco Vedge 1000 Router.