CVE-2021-1389

A vulnerability in the IPv6 traffic processing of Cisco IOS XR Software and Cisco NX-OS Software for certain Cisco devices could allow an unauthenticated, remote attacker to bypass an IPv6 access control list (ACL) that is configured for an interface of an affected device. The vulnerability is due to improper processing of IPv6 traffic that is sent through an affected device. An attacker could exploit this vulnerability by sending crafted IPv6 packets that traverse the affected device. A successful exploit could allow the attacker to access resources that would typically be protected by the interface ACL.

CVSS v3 6.5 MEDIUM
CVSS v2.0 6.4 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 2.5

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

6.4^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:N

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv6-acl-CHgdYk8j	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr:7.1.0:::::::*
	cpe:2.3:o:cisco:ios_xr:7.2.0:::::::*

OR	cpe:2.3:h:cisco:ncs_540:-:::::::*
	cpe:2.3:h:cisco:ncs_5501:-:::::::*
	cpe:2.3:h:cisco:ncs_5501-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5502:-:::::::*
	cpe:2.3:h:cisco:ncs_5502-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5508:-:::::::*
	cpe:2.3:h:cisco:ncs_5516:-:::::::*
	cpe:2.3:h:cisco:ncs_560:-:::::::*

Configuration 2 (hide)

AND

cpe:2.3:o:cisco:nx-os:-:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:nexus_3600:-:::::::*
	cpe:2.3:h:cisco:nexus_9500_r:-:::::::*

History

No history.

Information

Published : 2021-02-04 17:15

Updated : 2024-02-04 21:23

NVD link : CVE-2021-1389

Mitre link : CVE-2021-1389

CVE.ORG link : CVE-2021-1389

JSON object : View

Products Affected

cisco

nexus_3600
ios_xr
ncs_5502-se
ncs_5501-se
nexus_9500_r
ncs_5508
ncs_560
ncs_540
ncs_5501
nx-os
ncs_5502
ncs_5516

CWE

NVD-CWE-Other CWE-284

Improper Access Control

{"id": "CVE-2021-1389", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2021-02-04T17:15:18.937", "references": [{"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv6-acl-CHgdYk8j", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the IPv6 traffic processing of Cisco IOS XR Software and Cisco NX-OS Software for certain Cisco devices could allow an unauthenticated, remote attacker to bypass an IPv6 access control list (ACL) that is configured for an interface of an affected device. The vulnerability is due to improper processing of IPv6 traffic that is sent through an affected device. An attacker could exploit this vulnerability by sending crafted IPv6 packets that traverse the affected device. A successful exploit could allow the attacker to access resources that would typically be protected by the interface ACL."}, {"lang": "es", "value": "Una vulnerabilidad en el procesamiento del tr\u00e1fico IPv6 del Software Cisco IOS XR, y el Software Cisco NX-OS para determinados dispositivos Cisco, podr\u00eda permitir a un atacante remoto no autenticado omitir una lista de control de acceso (ACL) IPv6 configurada para una interfaz de un dispositivo afectado. La vulnerabilidad es debido al procesamiento inapropiado del tr\u00e1fico IPv6 que se env\u00eda por medio de un dispositivo afectado. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de paquetes IPv6 dise\u00f1ados que atraviesan el dispositivo afectado. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante acceder a recursos que normalmente estar\u00edan protegidos por la interfaz ACL"}], "lastModified": "2023-11-07T03:28:10.673", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B76CC85-2825-44F1-BE8A-3F01573BC199", "versionEndExcluding": "6.6.3"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24DF4040-86A9-46CA-8BAB-04D6016751D5"}, {"criteria": "cpe:2.3:o:cisco:ios_xr:7.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84BABFE7-1350-4FB0-B9ED-5F08E386BC40"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:ncs_540:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BC7AE6C1-B7C6-4056-9719-B5CFF71970AD"}, {"criteria": "cpe:2.3:h:cisco:ncs_5501:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0A972EFE-4F7E-4BFC-8631-66A2D16B74A3"}, {"criteria": "cpe:2.3:h:cisco:ncs_5501-se:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1B254955-C485-45D7-A19B-E78CE1D997AD"}, {"criteria": "cpe:2.3:h:cisco:ncs_5502:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7F72AEF0-EE70-40F8-B52B-1390820B87BB"}, {"criteria": "cpe:2.3:h:cisco:ncs_5502-se:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "50C7B71A-2559-4E90-BAAA-C6FAAFE35FC3"}, {"criteria": "cpe:2.3:h:cisco:ncs_5508:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "43D21B01-A754-474F-8E46-14D733AB307E"}, {"criteria": "cpe:2.3:h:cisco:ncs_5516:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "17D6424C-972F-459C-B8F7-04FFD9F541BC"}, {"criteria": "cpe:2.3:h:cisco:ncs_560:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D4CC8256-E4F8-4DCB-B69A-40A7C5AA41E8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:nx-os:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA35D4AA-24B3-428E-84ED-804EF941E9A9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:nexus_3600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "97217080-455C-48E4-8CE1-6D5B9485864F"}, {"criteria": "cpe:2.3:h:cisco:nexus_9500_r:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE07E8D4-376D-4341-A656-F8440368A8A9"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}