CVE-2021-1578: Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability
First published: Wed Aug 25 2021(Updated: )
A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Application Policy Infrastructure Controller (Cloud APIC) could allow an authenticated, remote attacker to elevate privileges to Administrator on an affected device. This vulnerability is due to an improper policy default setting. An attacker could exploit this vulnerability by using a non-privileged credential for Cisco ACI Multi-Site Orchestrator (MSO) to send a specific API request to a managed Cisco APIC or Cloud APIC device. A successful exploit could allow the attacker to obtain Administrator credentials on the affected device.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Application Policy Infrastructure Controller | >=5.0<=5.1\(3e\) | |
| Cisco Application Policy Infrastructure Controller | =5.0\(2h\) | |
| Cisco Cloud Application Policy Infrastructure Controller | >=5.0<=5.1\(3e\) | |
| Cisco Cloud Application Policy Infrastructure Controller | =5.0\(2h\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-1578?
CVE-2021-1578 is a vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Application Policy Infrastructure Controller (Cloud APIC) that could allow an authenticated, remote attacker to elevate privileges to Administrator on an affected device.
How does CVE-2021-1578 impact Cisco APIC and Cloud APIC?
CVE-2021-1578 allows an authenticated, remote attacker to elevate privileges to Administrator on an affected Cisco APIC or Cloud APIC device.
What is the severity of CVE-2021-1578?
The severity of CVE-2021-1578 is critical with a CVSS score of 8.8.
Which version of Cisco APIC and Cloud APIC are affected by CVE-2021-1578?
Cisco Application Policy Infrastructure Controller (APIC) versions 5.0.2h to 5.1.3e and Cisco Cloud Application Policy Infrastructure Controller (Cloud APIC) versions 5.0.2h to 5.1.3e are affected by CVE-2021-1578.
How can I fix CVE-2021-1578?
To fix CVE-2021-1578, Cisco has released software updates that address this vulnerability. It is recommended to upgrade to a fixed software version as identified in the Cisco Security Advisory.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/author
- agent/title
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- vendor/cisco
- canonical/cisco application policy infrastructure controller
- version/cisco application policy infrastructure controller/5.0
- version/cisco application policy infrastructure controller/5.1\(3e\)
- version/cisco application policy infrastructure controller/5.0\(2h\)
- canonical/cisco cloud application policy infrastructure controller
- version/cisco cloud application policy infrastructure controller/5.0
- version/cisco cloud application policy infrastructure controller/5.1\(3e\)
- version/cisco cloud application policy infrastructure controller/5.0\(2h\)