What is the vulnerability ID for the multiple vulnerabilities in Cisco Intersight Virtual Appliance?

The vulnerability ID is CVE-2021-1600.

What is the severity of CVE-2021-1600?

The severity of CVE-2021-1600 is high with a severity value of 8.3.

What software is affected by CVE-2021-1600?

The Cisco Intersight Virtual Appliance version 1.0(1) is affected by CVE-2021-1600.

How can an unauthenticated attacker exploit CVE-2021-1600?

An unauthenticated attacker can exploit CVE-2021-1600 by accessing sensitive internal services from an external interface.

How can I fix CVE-2021-1600?

To fix CVE-2021-1600, apply the necessary patches or updates provided by Cisco.

Vulnerability/
CVE-2021-1600

high

8.3

CWE

284

22/7/2021

7/11/2024

CVE-2021-1600: Cisco Intersight Virtual Appliance IPv4 and IPv6 Forwarding Vulnerabilities

First published: Thu Jul 22 2021(Updated: )

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external management interface. An attacker could exploit these vulnerabilities by sending specific traffic to this interface on an affected device. A successful exploit could allow the attacker to access sensitive internal services and make configuration changes on the affected device.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Intersight Virtual Appliance	=1.0\(1\)

Remedy

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsi2-iptaclbp-L8Dzs8m8

Never miss a vulnerability like this again

Reference Links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsi2-iptaclbp-L8Dzs8m8

Frequently Asked Questions

What is the vulnerability ID for the multiple vulnerabilities in Cisco Intersight Virtual Appliance?
The vulnerability ID is CVE-2021-1600.
What is the severity of CVE-2021-1600?
The severity of CVE-2021-1600 is high with a severity value of 8.3.
What software is affected by CVE-2021-1600?
The Cisco Intersight Virtual Appliance version 1.0(1) is affected by CVE-2021-1600.
How can an unauthenticated attacker exploit CVE-2021-1600?
An unauthenticated attacker can exploit CVE-2021-1600 by accessing sensitive internal services from an external interface.
How can I fix CVE-2021-1600?
To fix CVE-2021-1600, apply the necessary patches or updates provided by Cisco.

collector/nvd-index
agent/type
agent/softwarecombine
agent/remedy
agent/severity
agent/references
agent/author
agent/title
agent/weakness
agent/description
agent/tags
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
vendor/cisco
canonical/cisco intersight virtual appliance
version/cisco intersight virtual appliance/1.0\(1\)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.