Unknown
CVE-2021-1419
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2021-1419
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations within the SSH management interface. A network administrator user could exploit this vulnerability by accessing an affected device through SSH management to make a configuration change. A successful exploit could allow the attacker to gain privileges equivalent to the root user.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- 1100-8p firmware -,
- 1120 firmware -,
- 1160 firmware -,
- aironet 1542d firmware -,
- aironet 1542i firmware -,
- aironet 1562d firmware -,
- aironet 1562e firmware -,
- aironet 1562i firmware -,
- aironet 1815i firmware -,
- aironet 1815m firmware -,
- aironet 1815t firmware -,
- aironet 1815w firmware -,
- aironet 1830e firmware -,
- aironet 1830i firmware -,
- aironet 1840i firmware -,
- aironet 1850e firmware -,
- aironet 1850i firmware -,
- aironet 2800e firmware -,
- aironet 2800i firmware -,
- aironet 3800e firmware -,
- aironet 3800i firmware -,
- aironet 3800p firmware -,
- aironet 4800 firmware -,
- catalyst 9105axi firmware -,
- catalyst 9105axw firmware -,
- catalyst 9115axe firmware -,
- catalyst 9115axi firmware -,
- catalyst 9117 firmware -,
- catalyst 9120axe firmware -,
- catalyst 9120axi firmware -,
- catalyst 9120axp firmware -,
- catalyst 9124axd firmware -,
- catalyst 9124axi firmware -,
- catalyst 9130axe firmware -,
- catalyst 9130axi firmware -,
- catalyst 9800 firmware,
- catalyst 9800 firmware 17.4,
- catalyst iw6300 ac firmware -,
- catalyst iw6300 dc firmware -,
- catalyst iw6300 dcw firmware -,
- esw6300 firmware -,
- wireless lan controller software
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
