high
7.8
CWE
522
Advisory Published
Updated

CVE-2021-1392: Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability

First published: Wed Mar 24 2021(Updated: )

A vulnerability in the CLI command permissions of Cisco IOS and Cisco IOS XE Software could allow an authenticated, local attacker to retrieve the password for Common Industrial Protocol (CIP) and then remotely configure the device as an administrative user. This vulnerability exists because incorrect permissions are associated with the show cip security CLI command. An attacker could exploit this vulnerability by issuing the command to retrieve the password for CIP on an affected device. A successful exploit could allow the attacker to reconfigure the device.

Credit: ykramarz@cisco.com

Affected SoftwareAffected VersionHow to fix
Cisco IOS=15.0\(1\)ey
Cisco IOS=15.0\(1\)ey1
Cisco IOS=15.0\(1\)ey2
Cisco IOS=15.1\(3\)svs
Cisco IOS=15.1\(3\)svt1
Cisco IOS=15.2\(1\)ey
Cisco IOS=15.2\(2\)e
Cisco IOS=15.2\(2\)e1
Cisco IOS=15.2\(2\)e2
Cisco IOS=15.2\(2\)e3
Cisco IOS=15.2\(2\)e4
Cisco IOS=15.2\(2\)e5
Cisco IOS=15.2\(2\)e5a
Cisco IOS=15.2\(2\)e5b
Cisco IOS=15.2\(2\)e6
Cisco IOS=15.2\(2\)e7
Cisco IOS=15.2\(2\)e7b
Cisco IOS=15.2\(2\)e8
Cisco IOS=15.2\(2\)e9
Cisco IOS=15.2\(2\)e10
Cisco IOS=15.2\(2\)ea
Cisco IOS=15.2\(2\)ea1
Cisco IOS=15.2\(2\)ea2
Cisco IOS=15.2\(2\)ea3
Cisco IOS=15.2\(2\)eb
Cisco IOS=15.2\(2\)eb1
Cisco IOS=15.2\(2\)eb2
Cisco IOS=15.2\(2a\)e2
Cisco IOS=15.2\(2b\)e
Cisco IOS=15.2\(3\)e1
Cisco IOS=15.2\(3\)e2
Cisco IOS=15.2\(3\)e3
Cisco IOS=15.2\(3\)e4
Cisco IOS=15.2\(3\)e5
Cisco IOS=15.2\(3\)ea
Cisco IOS=15.2\(4\)e5a
Cisco IOS=15.2\(4\)ea
Cisco IOS=15.2\(4\)ea1
Cisco IOS=15.2\(4\)ea2
Cisco IOS=15.2\(4\)ea3
Cisco IOS=15.2\(4\)ea4
Cisco IOS=15.2\(4\)ea5
Cisco IOS=15.2\(4\)ea6
Cisco IOS=15.2\(4\)ea7
Cisco IOS=15.2\(4\)ea8
Cisco IOS=15.2\(4\)ea9
Cisco IOS=15.2\(4\)ea9a
Cisco IOS=15.2\(4\)ea10
Cisco IOS=15.2\(4\)ec1
Cisco IOS=15.2\(4\)ec2
Cisco IOS=15.2\(4\)jaz
Cisco IOS=15.2\(5\)e
Cisco IOS=15.2\(5\)e1
Cisco IOS=15.2\(5\)e2
Cisco IOS=15.2\(5\)e2b
Cisco IOS=15.2\(5\)e2c
Cisco IOS=15.2\(5\)ea
Cisco IOS=15.2\(5a\)e1
Cisco IOS=15.2\(6\)e
Cisco IOS=15.2\(6\)e0a
Cisco IOS=15.2\(6\)e0c
Cisco IOS=15.2\(6\)e1
Cisco IOS=15.2\(6\)e1a
Cisco IOS=15.2\(6\)e1s
Cisco IOS=15.2\(7\)e0b
Cisco IOS=15.2\(7a\)e0b
Cisco IOS=15.2\(7b\)e0b
Cisco IOS=15.3\(3\)ja1
Cisco IOS=15.3\(3\)ja4
Cisco IOS=15.3\(3\)ja5
Cisco IOS=15.3\(3\)ja6
Cisco IOS=15.3\(3\)ja7
Cisco IOS=15.3\(3\)ja8
Cisco IOS=15.3\(3\)ja10
Cisco IOS=15.3\(3\)ja11
Cisco IOS=15.3\(3\)ja12
Cisco IOS=15.3\(3\)jaa
Cisco IOS=15.3\(3\)jax
Cisco IOS=15.3\(3\)jax1
Cisco IOS=15.3\(3\)jax2
Cisco IOS=15.3\(3\)jb
Cisco IOS=15.3\(3\)jbb
Cisco IOS=15.3\(3\)jbb1
Cisco IOS=15.3\(3\)jbb2
Cisco IOS=15.3\(3\)jbb4
Cisco IOS=15.3\(3\)jbb5
Cisco IOS=15.3\(3\)jbb6
Cisco IOS=15.3\(3\)jbb6a
Cisco IOS=15.3\(3\)jbb8
Cisco IOS=15.3\(3\)jc
Cisco IOS=15.3\(3\)jc1
Cisco IOS=15.3\(3\)jc2
Cisco IOS=15.3\(3\)jc3
Cisco IOS=15.3\(3\)jc4
Cisco IOS=15.3\(3\)jc5
Cisco IOS=15.3\(3\)jc6
Cisco IOS=15.3\(3\)jc8
Cisco IOS=15.3\(3\)jc9
Cisco IOS=15.3\(3\)jc14
Cisco IOS=15.3\(3\)jd
Cisco IOS=15.3\(3\)jd2
Cisco IOS=15.3\(3\)jd3
Cisco IOS=15.3\(3\)jd4
Cisco IOS=15.3\(3\)jd5
Cisco IOS=15.3\(3\)jd6
Cisco IOS=15.3\(3\)jd7
Cisco IOS=15.3\(3\)jd8
Cisco IOS=15.3\(3\)jd9
Cisco IOS=15.3\(3\)jd11
Cisco IOS=15.3\(3\)jd12
Cisco IOS=15.3\(3\)jd13
Cisco IOS=15.3\(3\)jd14
Cisco IOS=15.3\(3\)jd16
Cisco IOS=15.3\(3\)jd17
Cisco IOS=15.3\(3\)je
Cisco IOS=15.3\(3\)jf
Cisco IOS=15.3\(3\)jf1
Cisco IOS=15.3\(3\)jf2
Cisco IOS=15.3\(3\)jf4
Cisco IOS=15.3\(3\)jf5
Cisco IOS=15.3\(3\)jf6
Cisco IOS=15.3\(3\)jf7
Cisco IOS=15.3\(3\)jf8
Cisco IOS=15.3\(3\)jf9
Cisco IOS=15.3\(3\)jf10
Cisco IOS=15.3\(3\)jf11
Cisco IOS=15.3\(3\)jf12
Cisco IOS=15.3\(3\)jf12i
Cisco IOS=15.3\(3\)jf13
Cisco IOS=15.3\(3\)jg
Cisco IOS=15.3\(3\)jg1
Cisco IOS=15.3\(3\)jh
Cisco IOS=15.3\(3\)jh1
Cisco IOS=15.3\(3\)ji1
Cisco IOS=15.3\(3\)ji3
Cisco IOS=15.3\(3\)ji4
Cisco IOS=15.3\(3\)ji5
Cisco IOS=15.3\(3\)ji6
Cisco IOS=15.3\(3\)jj
Cisco IOS=15.3\(3\)jj1
Cisco IOS=15.3\(3\)jk
Cisco IOS=15.3\(3\)jk1
Cisco IOS=15.3\(3\)jk1t
Cisco IOS=15.3\(3\)jk2
Cisco IOS=15.3\(3\)jk2a
Cisco IOS=15.3\(3\)jk3
Cisco IOS=15.3\(3\)jk4
Cisco IOS=15.3\(3\)jn
Cisco IOS=15.3\(3\)jn3
Cisco IOS=15.3\(3\)jn4
Cisco IOS=15.3\(3\)jn6
Cisco IOS=15.3\(3\)jn7
Cisco IOS=15.3\(3\)jn8
Cisco IOS=15.3\(3\)jn9
Cisco IOS=15.3\(3\)jn11
Cisco IOS=15.3\(3\)jn13
Cisco IOS=15.3\(3\)jn14
Cisco IOS=15.3\(3\)jn15
Cisco IOS=15.3\(3\)jnb
Cisco IOS=15.3\(3\)jnb1
Cisco IOS=15.3\(3\)jnb2
Cisco IOS=15.3\(3\)jnb3
Cisco IOS=15.3\(3\)jnb4
Cisco IOS=15.3\(3\)jnb5
Cisco IOS=15.3\(3\)jnb6
Cisco IOS=15.3\(3\)jnc
Cisco IOS=15.3\(3\)jnc1
Cisco IOS=15.3\(3\)jnc2
Cisco IOS=15.3\(3\)jnc3
Cisco IOS=15.3\(3\)jnc4
Cisco IOS=15.3\(3\)jnd
Cisco IOS=15.3\(3\)jnd1
Cisco IOS=15.3\(3\)jnd2
Cisco IOS=15.3\(3\)jnd3
Cisco IOS=15.3\(3\)jnp
Cisco IOS=15.3\(3\)jnp1
Cisco IOS=15.3\(3\)jnp3
Cisco IOS=15.3\(3\)jpb
Cisco IOS=15.3\(3\)jpb1
Cisco IOS=15.3\(3\)jpc
Cisco IOS=15.3\(3\)jpc1
Cisco IOS=15.3\(3\)jpc2
Cisco IOS=15.3\(3\)jpc3
Cisco IOS=15.3\(3\)jpc5
Cisco IOS=15.3\(3\)jpd
Cisco IOS XE=3.3.0xo
Cisco IOS XE=3.3.1xo
Cisco IOS XE=3.3.2xo
Cisco IOS XE=3.6.5be
Cisco IOS XE=3.7.4e
Cisco IOS XE=3.7.5e
Cisco IOS XE=16.9.1
Cisco IOS XE=16.9.1d
Cisco IOS XE=16.10.1
Cisco IOS XE=16.10.1e
Cisco IOS XE=16.11.1
Cisco IOS XE=16.11.1a
Cisco IOS XE=16.11.1c
Cisco IOS XE=16.11.1s
Cisco IOS XE=16.11.2
Cisco IOS XE=16.12.1
Cisco IOS XE=16.12.1c
Cisco IOS XE=16.12.1s
Cisco IOS XE=16.12.2
Cisco IOS XE=16.12.2s
Cisco IOS XE=16.12.2t
Cisco IOS XE=16.12.3
Cisco IOS XE=16.12.3s
Cisco IOS XE=16.12.4
Cisco IOS XE=17.1.1
Cisco IOS XE=17.1.1s
Cisco IOS XE=17.1.1t
Cisco IOS XE=17.1.2
Cisco IOS XE=17.2.1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203