CVE-2021-34696

Опубликовано: 23 сент. 2021

Источник: nvd

CVSS3: 5.8

CVSS2: 5

EPSS Низкий

Описание

A vulnerability in the access control list (ACL) programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incorrect programming of hardware when an ACL is configured using a method other than the configuration CLI. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to bypass an ACL on the affected device.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*

Версия до 17.3.2 (включая)

Одно из

cpe:2.3:h:cisco:asr_902:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_903:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_907:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-10sz-pd:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-10sz-pd_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-12cz-a:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-12cz-a_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-12cz-d:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-12cz-d_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-12sz-im:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-12sz-im_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-24sz-im:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-24sz-im_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-24sz-m:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-24sz-m_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-24tz-m:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-24tz-m_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-4sz-a:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-4sz-a_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-4sz-d:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920-4sz-d_r:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:asr_920u-12sz-im:-:*:*:*:*:*:*:*

EPSS

Процентиль: 50%

0.00264

Низкий

5.8 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-284

NVD-CWE-Other

Связанные уязвимости

GHSA-28xr-x3rf-rhgr

github

больше 3 лет назад

BDU:2021-05453