← Back

CVE-2021-34727

nvd nist
Published: Sep 23, 2021Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes traffic. An attacker could exploit this vulnerability by sending crafted traffic to the device. A successful exploit could allow the attacker to cause a buffer overflow and possibly execute arbitrary commands with root-level privileges, or cause the device to reload, which could result in a denial of service condition.

Affected (1)

Products: Cisco: Ios Xe Sd Wan
Cisco
1 product
Ios Xe Sd Wan
Configuration A
1 vulnerable · 48 platform
Vulnerable SoftwareAffected Versions
Ios Xe Sd Wan
All versions
Running on/withPlatform Versions
Cisco
1000 Integrated Services Router
All versions
Cisco
1100 4g/6g Integrated Services Router
All versions
Cisco
1100 4p Integrated Services Router
All versions
Cisco
1100 8p Integrated Services Router
All versions
Cisco
1100 Integrated Services Router
All versions
Cisco
1101 4p Integrated Services Router
All versions
Cisco
1101 Integrated Services Router
All versions
Cisco
1109 2p Integrated Services Router
All versions
Cisco
1109 4p Integrated Services Router
All versions
Cisco
1109 Integrated Services Router
All versions
Cisco
1111x 8p Integrated Services Router
All versions
Cisco
1111x Integrated Services Router
All versions
Cisco
111x Integrated Services Router
All versions
Cisco
1120 Integrated Services Router
All versions
Cisco
1160 Integrated Services Router
All versions
Cisco
4000 Integrated Services Router
All versions
Cisco
4221 Integrated Services Router
All versions
Cisco
422 Integrated Services Router
All versions
Cisco
4321 Integrated Services Router
All versions
Cisco
4331 Integrated Services Router
All versions
Cisco
4351 Integrated Services Router
All versions
Cisco
4431 Integrated Services Router
All versions
Cisco
4451 X Integrated Services Router
All versions
Cisco
4451 Integrated Services Router
All versions
Cisco
4461 Integrated Services Router
All versions
Cisco
Asr 1000
All versions
Cisco
Asr 1000 Esp100
All versions
Cisco
Asr 1000 X
All versions
Cisco
Asr 1000 Series
All versions
Cisco
Asr 1000 Series Route Processor (rp2)
All versions
Cisco
Asr 1000 Series Route Processor (rp3)
All versions
Cisco
Asr 1001
All versions
Cisco
Asr 1001 Hx
All versions
Cisco
Asr 1001 Hx R
All versions
Cisco
Asr 1001 X
All versions
Cisco
Asr 1001 X R
All versions
Cisco
Asr 1002
All versions
Cisco
Asr 1002 Hx
All versions
Cisco
Asr 1002 Hx R
All versions
Cisco
Asr 1002 X
All versions
Cisco
Asr 1002 X R
All versions
Cisco
Asr 1004
All versions
Cisco
Asr 1006
All versions
Cisco
Asr 1006 X
All versions
Cisco
Asr 1009 X
All versions
Cisco
Asr 1013
All versions
Cisco
Asr 1023
All versions
Cisco
Csr 1000v
All versions

Related CWEs

CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (2)

Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.