How can an attacker exploit CVE-2021-1441?

An authenticated, local attacker can exploit CVE-2021-1441 to execute unsigned code at system boot time.

What is the severity of CVE-2021-1441?

The severity of CVE-2021-1441 is high with a CVSS score of 6.7.

Which software versions are affected by CVE-2021-1441?

Cisco IOS XE Software versions 3.15.1xbs, 3.15.2xbs, 16.9.1, 16.9.1c, 16.10.1, 16.10.1e, 16.11.1, 16.11.1c, 16.11.1s, 16.12.1, 16.12.1c, 16.12.1s, 16.12.1za, 16.12.2, 16.12.2s, 16.12.2t, 16.12.3, 16.12.3s, 16.12.4, 17.1.1, 17.1.1s, 17.1.1t, 17.1.2, 17.2.1, 17.2.1r, 17.2.1v, and 17.2.3 are all affected by CVE-2021-1441.

How can I fix CVE-2021-1441?

There is currently no known fix for CVE-2021-1441. It is recommended to follow the mitigation steps provided by the vendor.

Vulnerability/
CVE-2021-1441

high

7.2

CWE

24/3/2021

17/9/2024

CVE-2021-1441: Cisco IOS XE Software Hardware Initialization Routines Arbitrary Code Execution Vulnerability

First published: Wed Mar 24 2021(Updated: )

A vulnerability in the hardware initialization routines of Cisco IOS XE Software for Cisco 1100 Series Industrial Integrated Services Routers and Cisco ESR6300 Embedded Series Routers could allow an authenticated, local attacker to execute unsigned code at system boot time. This vulnerability is due to incorrect validations of parameters passed to a diagnostic script that is executed when the device boots up. An attacker could exploit this vulnerability by tampering with an executable file stored on a device. A successful exploit could allow the attacker to execute unsigned code at boot time and bypass the software image verification check part of the secure boot process of an affected device. To exploit this vulnerability, the attacker would need administrative level credentials (level 15) on the device.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS XE	=3.15.1xbs
Cisco IOS XE	=3.15.2xbs
Cisco IOS XE	=16.9.1
Cisco IOS XE	=16.9.1c
Cisco IOS XE	=16.10.1
Cisco IOS XE	=16.10.1e
Cisco IOS XE	=16.11.1
Cisco IOS XE	=16.11.1c
Cisco IOS XE	=16.11.1s
Cisco IOS XE	=16.12.1
Cisco IOS XE	=16.12.1c
Cisco IOS XE	=16.12.1s
Cisco IOS XE	=16.12.1za
Cisco IOS XE	=16.12.2
Cisco IOS XE	=16.12.2s
Cisco IOS XE	=16.12.2t
Cisco IOS XE	=16.12.3
Cisco IOS XE	=16.12.3s
Cisco IOS XE	=16.12.4
Cisco IOS XE	=17.1.1
Cisco IOS XE	=17.1.1s
Cisco IOS XE	=17.1.1t
Cisco IOS XE	=17.1.2
Cisco IOS XE	=17.2.1
Cisco IOS XE	=17.2.1r
Cisco IOS XE	=17.2.1v
Cisco IOS XE	=17.2.3
Cisco ESR6300
Cisco Ir1101

Never miss a vulnerability like this again

Reference Links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-iot-codexec-k46EFF6q

Frequently Asked Questions

What is CVE-2021-1441?
CVE-2021-1441 is a vulnerability in the hardware initialization routines of Cisco IOS XE Software for Cisco 1100 Series Industrial Integrated Services Routers and Cisco ESR6300 Embedded Series Routers.
How can an attacker exploit CVE-2021-1441?
An authenticated, local attacker can exploit CVE-2021-1441 to execute unsigned code at system boot time.
What is the severity of CVE-2021-1441?
The severity of CVE-2021-1441 is high with a CVSS score of 6.7.
Which software versions are affected by CVE-2021-1441?
Cisco IOS XE Software versions 3.15.1xbs, 3.15.2xbs, 16.9.1, 16.9.1c, 16.10.1, 16.10.1e, 16.11.1, 16.11.1c, 16.11.1s, 16.12.1, 16.12.1c, 16.12.1s, 16.12.1za, 16.12.2, 16.12.2s, 16.12.2t, 16.12.3, 16.12.3s, 16.12.4, 17.1.1, 17.1.1s, 17.1.1t, 17.1.2, 17.2.1, 17.2.1r, 17.2.1v, and 17.2.3 are all affected by CVE-2021-1441.
How can I fix CVE-2021-1441?
There is currently no known fix for CVE-2021-1441. It is recommended to follow the mitigation steps provided by the vendor.

collector/nvd-index
agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/last-modified-date
agent/author
agent/severity
agent/weakness
agent/title
agent/tags
agent/softwarecombine
agent/description
agent/first-publish-date
agent/event
vendor/cisco
canonical/cisco ios xe
version/cisco ios xe/3.15.1xbs
version/cisco ios xe/3.15.2xbs
version/cisco ios xe/16.9.1
version/cisco ios xe/16.9.1c
version/cisco ios xe/16.10.1
version/cisco ios xe/16.10.1e
version/cisco ios xe/16.11.1
version/cisco ios xe/16.11.1c
version/cisco ios xe/16.11.1s
version/cisco ios xe/16.12.1
version/cisco ios xe/16.12.1c
version/cisco ios xe/16.12.1s
version/cisco ios xe/16.12.1za
version/cisco ios xe/16.12.2
version/cisco ios xe/16.12.2s
version/cisco ios xe/16.12.2t
version/cisco ios xe/16.12.3
version/cisco ios xe/16.12.3s
version/cisco ios xe/16.12.4
version/cisco ios xe/17.1.1
version/cisco ios xe/17.1.1s
version/cisco ios xe/17.1.1t
version/cisco ios xe/17.1.2
version/cisco ios xe/17.2.1
version/cisco ios xe/17.2.1r
version/cisco ios xe/17.2.1v
version/cisco ios xe/17.2.3
canonical/cisco esr6300
canonical/cisco ir1101

CVE-2021-1441: Cisco IOS XE Software Hardware Initialization Routines Arbitrary Code Execution Vulnerability

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2021-1441?

How can an attacker exploit CVE-2021-1441?

What is the severity of CVE-2021-1441?

Which software versions are affected by CVE-2021-1441?

How can I fix CVE-2021-1441?

Company

Resources

Contact