cnvd - cnvd-2021-37691

CNVD-2021-37691

Vulnerability from cnvd - Published: 2021-05-28

Title

Cisco Wide Area Application Services信息泄露漏洞（CNVD-2021-37691）

Description

Cisco Wide Area Application Services（WAAS）是一种全面的广域网优化解决方案，它能够提高广域网环境中的应用运行性能，向分支办公室传输视频并在本地托管分支办公室IT服务。 Cisco Wide Area Application Services 6.4.5a及更早版本存在信息泄露漏洞，该漏洞源于对用户可在CLI中执行的特定命令的输入验证和授权不当，攻击者可利用该漏洞越权读取任意文件。

Severity

低

Patch Name

Cisco Wide Area Application Services信息泄露漏洞（CNVD-2021-37691）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK

Reference

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK

Impacted products

Name
Cisco Wide Area Application Services <=6.4.5a

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-1438",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-1438"
    }
  },
  "description": "Cisco Wide Area Application Services\uff08WAAS\uff09\u662f\u4e00\u79cd\u5168\u9762\u7684\u5e7f\u57df\u7f51\u4f18\u5316\u89e3\u51b3\u65b9\u6848\uff0c\u5b83\u80fd\u591f\u63d0\u9ad8\u5e7f\u57df\u7f51\u73af\u5883\u4e2d\u7684\u5e94\u7528\u8fd0\u884c\u6027\u80fd\uff0c\u5411\u5206\u652f\u529e\u516c\u5ba4\u4f20\u8f93\u89c6\u9891\u5e76\u5728\u672c\u5730\u6258\u7ba1\u5206\u652f\u529e\u516c\u5ba4IT\u670d\u52a1\u3002\n\nCisco Wide Area Application Services 6.4.5a\u53ca\u66f4\u65e9\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5bf9\u7528\u6237\u53ef\u5728CLI\u4e2d\u6267\u884c\u7684\u7279\u5b9a\u547d\u4ee4\u7684\u8f93\u5165\u9a8c\u8bc1\u548c\u6388\u6743\u4e0d\u5f53\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8d8a\u6743\u8bfb\u53d6\u4efb\u610f\u6587\u4ef6\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-37691",
  "openTime": "2021-05-28",
  "patchDescription": "Cisco Wide Area Application Services\uff08WAAS\uff09\u662f\u4e00\u79cd\u5168\u9762\u7684\u5e7f\u57df\u7f51\u4f18\u5316\u89e3\u51b3\u65b9\u6848\uff0c\u5b83\u80fd\u591f\u63d0\u9ad8\u5e7f\u57df\u7f51\u73af\u5883\u4e2d\u7684\u5e94\u7528\u8fd0\u884c\u6027\u80fd\uff0c\u5411\u5206\u652f\u529e\u516c\u5ba4\u4f20\u8f93\u89c6\u9891\u5e76\u5728\u672c\u5730\u6258\u7ba1\u5206\u652f\u529e\u516c\u5ba4IT\u670d\u52a1\u3002\r\n\r\nCisco Wide Area Application Services 6.4.5a\u53ca\u66f4\u65e9\u7248\u672c\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5bf9\u7528\u6237\u53ef\u5728CLI\u4e2d\u6267\u884c\u7684\u7279\u5b9a\u547d\u4ee4\u7684\u8f93\u5165\u9a8c\u8bc1\u548c\u6388\u6743\u4e0d\u5f53\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8d8a\u6743\u8bfb\u53d6\u4efb\u610f\u6587\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Wide Area Application Services\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2021-37691\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Wide Area Application Services \u003c=6.4.5a"
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK",
  "serverity": "\u4f4e",
  "submitTime": "2021-05-06",
  "title": "Cisco Wide Area Application Services\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2021-37691\uff09"
}

CVE-2021-1438 (GCVE-0-2021-1438)

Vulnerability from cvelistv5 – Published: 2021-05-06 12:40 – Updated: 2024-11-08 23:21

Title

Cisco Wide Area Application Services Software Information Disclosure Vulnerability

Summary

A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerability by authenticating to an affected device and issuing a specific set of commands. A successful exploit could allow the attacker to read arbitrary files that they originally did not have permissions to access.

Severity ?

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-668

Assigner

cisco

References

URL

Tags

https://tools.cisco.com/security/center/content/C…

vendor-advisoryx_refsource_CISCO

Impacted products

	Vendor	Product	Version
	Cisco	Cisco Wide Area Application Services (WAAS)	Affected: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T16:11:17.330Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20210505 Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-1438",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-08T20:44:22.978546Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-08T23:21:29.541Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Wide Area Application Services (WAAS)",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2021-05-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerability by authenticating to an affected device and issuing a specific set of commands. A successful exploit could allow the attacker to read arbitrary files that they originally did not have permissions to access."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-668",
              "description": "CWE-668",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-05-06T12:40:54",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20210505 Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK"
        }
      ],
      "source": {
        "advisory": "cisco-sa-waas-infdisc-Twb4EypK",
        "defect": [
          [
            "CSCvw97364"
          ]
        ],
        "discovery": "INTERNAL"
      },
      "title": "Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "DATE_PUBLIC": "2021-05-05T16:00:00",
          "ID": "CVE-2021-1438",
          "STATE": "PUBLIC",
          "TITLE": "Cisco Wide Area Application Services Software Information Disclosure Vulnerability"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Wide Area Application Services (WAAS)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Cisco"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper input validation and authorization of specific commands that a user can execute within the CLI. An attacker could exploit this vulnerability by authenticating to an affected device and issuing a specific set of commands. A successful exploit could allow the attacker to read arbitrary files that they originally did not have permissions to access."
            }
          ]
        },
        "exploit": [
          {
            "lang": "en",
            "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."
          }
        ],
        "impact": {
          "cvss": {
            "baseScore": "5.5",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-668"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20210505 Cisco Wide Area Application Services Software Information Disclosure Vulnerability",
              "refsource": "CISCO",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-waas-infdisc-Twb4EypK"
            }
          ]
        },
        "source": {
          "advisory": "cisco-sa-waas-infdisc-Twb4EypK",
          "defect": [
            [
              "CSCvw97364"
            ]
          ],
          "discovery": "INTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2021-1438",
    "datePublished": "2021-05-06T12:40:54.478927Z",
    "dateReserved": "2020-11-13T00:00:00",
    "dateUpdated": "2024-11-08T23:21:29.541Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-37691

CVE-2021-1438 (GCVE-0-2021-1438)

Tags

Sightings

Nomenclature