cnvd - cnvd-2021-37691

cnvd-2021-37691

Vulnerability from cnvd

Title: Cisco Wide Area Application Services信息泄露漏洞（CNVD-2021-37691）

Description:

Cisco Wide Area Application Services（WAAS）是一种全面的广域网优化解决方案，它能够提高广域网环境中的应用运行性能，向分支办公室传输视频并在本地托管分支办公室IT服务。

Cisco Wide Area Application Services 6.4.5a及更早版本存在信息泄露漏洞，该漏洞源于对用户可在CLI中执行的特定命令的输入验证和授权不当，攻击者可利用该漏洞越权读取任意文件。

Severity: 低

Patch Name: Cisco Wide Area Application Services信息泄露漏洞（CNVD-2021-37691）的补丁

Patch Description:

Cisco Wide Area Application Services 6.4.5a及更早版本存在信息泄露漏洞，该漏洞源于对用户可在CLI中执行的特定命令的输入验证和授权不当，攻击者可利用该漏洞越权读取任意文件。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK

Reference: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK

Impacted products

Name
Cisco Wide Area Application Services <=6.4.5a

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-1438",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-1438"
    }
  },
  "description": "Cisco Wide Area Application Services\uff08WAAS\uff09\u662f\u4e00\u79cd\u5168\u9762\u7684\u5e7f\u57df\u7f51\u4f18\u5316\u89e3\u51b3\u65b9\u6848\uff0c\u5b83\u80fd\u591f\u63d0\u9ad8\u5e7f\u57df\u7f51\u73af\u5883\u4e2d\u7684\u5e94\u7528\u8fd0\u884c\u6027\u80fd\uff0c\u5411\u5206\u652f\u529e\u516c\u5ba4\u4f20\u8f93\u89c6\u9891\u5e76\u5728\u672c\u5730\u6258\u7ba1\u5206\u652f\u529e\u516c\u5ba4IT\u670d\u52a1\u3002\n\nCisco Wide Area Application Services 6.4.5a\u53ca\u66f4\u65e9\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5bf9\u7528\u6237\u53ef\u5728CLI\u4e2d\u6267\u884c\u7684\u7279\u5b9a\u547d\u4ee4\u7684\u8f93\u5165\u9a8c\u8bc1\u548c\u6388\u6743\u4e0d\u5f53\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8d8a\u6743\u8bfb\u53d6\u4efb\u610f\u6587\u4ef6\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-37691",
  "openTime": "2021-05-28",
  "patchDescription": "Cisco Wide Area Application Services\uff08WAAS\uff09\u662f\u4e00\u79cd\u5168\u9762\u7684\u5e7f\u57df\u7f51\u4f18\u5316\u89e3\u51b3\u65b9\u6848\uff0c\u5b83\u80fd\u591f\u63d0\u9ad8\u5e7f\u57df\u7f51\u73af\u5883\u4e2d\u7684\u5e94\u7528\u8fd0\u884c\u6027\u80fd\uff0c\u5411\u5206\u652f\u529e\u516c\u5ba4\u4f20\u8f93\u89c6\u9891\u5e76\u5728\u672c\u5730\u6258\u7ba1\u5206\u652f\u529e\u516c\u5ba4IT\u670d\u52a1\u3002\r\n\r\nCisco Wide Area Application Services 6.4.5a\u53ca\u66f4\u65e9\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5bf9\u7528\u6237\u53ef\u5728CLI\u4e2d\u6267\u884c\u7684\u7279\u5b9a\u547d\u4ee4\u7684\u8f93\u5165\u9a8c\u8bc1\u548c\u6388\u6743\u4e0d\u5f53\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8d8a\u6743\u8bfb\u53d6\u4efb\u610f\u6587\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Wide Area Application Services\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2021-37691\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Wide Area Application Services \u003c=6.4.5a"
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK",
  "serverity": "\u4f4e",
  "submitTime": "2021-05-06",
  "title": "Cisco Wide Area Application Services\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2021-37691\uff09"
}

CVE-2021-1438 (GCVE-0-2021-1438)

Vulnerability from cvelistv5

Published

2021-05-06 12:40

Modified

2024-11-08 23:21

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-668

Summary

A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerability by authenticating to an affected device and issuing a specific set of commands. A successful exploit could allow the attacker to read arbitrary files that they originally did not have permissions to access.

References

▼	URL	Tags
	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK	vendor-advisory, x_refsource_CISCO

Impacted products

	Vendor	Product	Version
	Cisco	Cisco Wide Area Application Services (WAAS)	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T16:11:17.330Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20210505 Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-1438",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-08T20:44:22.978546Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-08T23:21:29.541Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Wide Area Application Services (WAAS)",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2021-05-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerability by authenticating to an affected device and issuing a specific set of commands. A successful exploit could allow the attacker to read arbitrary files that they originally did not have permissions to access."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-668",
              "description": "CWE-668",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-05-06T12:40:54",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20210505 Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK"
        }
      ],
      "source": {
        "advisory": "cisco-sa-waas-infdisc-Twb4EypK",
        "defect": [
          [
            "CSCvw97364"
          ]
        ],
        "discovery": "INTERNAL"
      },
      "title": "Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "DATE_PUBLIC": "2021-05-05T16:00:00",
          "ID": "CVE-2021-1438",
          "STATE": "PUBLIC",
          "TITLE": "Cisco Wide Area Application Services Software Information Disclosure Vulnerability"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Wide Area Application Services (WAAS)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Cisco"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerability by authenticating to an affected device and issuing a specific set of commands. A successful exploit could allow the attacker to read arbitrary files that they originally did not have permissions to access."
            }
          ]
        },
        "exploit": [
          {
            "lang": "en",
            "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
          }
        ],
        "impact": {
          "cvss": {
            "baseScore": "5.5",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-668"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20210505 Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK"
            }
          ]
        },
        "source": {
          "advisory": "cisco-sa-waas-infdisc-Twb4EypK",
          "defect": [
            [
              "CSCvw97364"
            ]
          ],
          "discovery": "INTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2021-1438",
    "datePublished": "2021-05-06T12:40:54.478927Z",
    "dateReserved": "2020-11-13T00:00:00",
    "dateUpdated": "2024-11-08T23:21:29.541Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted