Vulnerability Description
Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an attacker to execute arbitrary code as the root user or cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Vedge 100 Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge 100 | - |
| Cisco | Vedge 1000 Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge 1000 | - |
| Cisco | Vedge 100B Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge 100B | - |
| Cisco | Vedge 100M Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge 100M | - |
| Cisco | Vedge 100Wm Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge 100Wm | - |
| Cisco | Vedge 2000 Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge 2000 | - |
| Cisco | Vedge 5000 Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge 5000 | - |
| Cisco | Vedge Cloud Firmware | >= 20.4, < 20.4.1 |
| Cisco | Vedge Cloud | - |
Related Weaknesses (CWE)
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sVendor Advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sVendor Advisory
FAQ
What is CVE-2021-1509?
CVE-2021-1509 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple vulnerabilities in Cisco SD-WAN vEdge Software could allow an attacker to execute arbitrary code as the root user or cause a denial of service (DoS) condition on an affected device. For more ...
How severe is CVE-2021-1509?
CVE-2021-1509 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-1509?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Vedge 100 Firmware, Cisco Vedge 100, Cisco Vedge 1000 Firmware, Cisco Vedge 1000, Cisco Vedge 100B Firmware.