CVE-2021-34719: Cisco IOS XR Software Authenticated User Privilege Escalation Vulnerabilities
First published: Thu Sep 09 2021(Updated: )
Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to elevate privileges on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XRv 9000 | <7.3.2 | |
| Cisco IOS XRv 9000 | >=7.4.0<=7.4.1 | |
| Cisco ASR 9000v | ||
| Cisco ASR 9001 | ||
| Cisco ASR 9006 Router | ||
| Cisco ASR 9010 Router | ||
| Cisco ASR 9901-RP Firmware | ||
| Cisco ASR 9902 | ||
| Cisco ASR 9903 | ||
| Cisco ASR 9904 | ||
| Cisco ASR 9906 | ||
| Cisco ASR 9910 | ||
| Cisco ASR 9912 | ||
| Cisco ASR 9922 | ||
| Cisco IOS XR Firmware | ||
| Cisco IOS XR Firmware | ||
| Cisco IOS XRv 9000 | >=7.4.0<7.4.1 | |
| Cisco NCS 520 | ||
| Cisco NCS 540 | ||
| Cisco NCS 540 | ||
| Cisco NCS 560-4 | ||
| Cisco NCS 560-7 | ||
| Cisco NCS 5001 Firmware | ||
| Cisco NCS 5002 | ||
| Cisco NCS 5011 | ||
| Cisco NCS 4009 | ||
| Cisco NCS 4016 | ||
| Cisco NCS 5501-SE | ||
| Cisco NCS 5501-SE | ||
| Cisco NCS 5502 | ||
| Cisco NCS 5502-SE Firmware | ||
| Cisco NCS 5508 | ||
| Cisco NCS 5516 | ||
| Cisco NCS 6000 | ||
| Cisco NCS 6008-8-Slot Chassis | ||
| Cisco NCS 1001 | ||
| Cisco NCS 1002 | ||
| Cisco NCS 1004 Firmware | ||
| Cisco 8101-32h | ||
| Cisco 8101-32h | ||
| Cisco 8102-64h | ||
| Cisco 8201 | ||
| Cisco 8201 | ||
| Cisco 8202 | ||
| Cisco 8804 | ||
| Cisco 8808 | ||
| Cisco 8812 | ||
| Cisco 8818 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-34719?
CVE-2021-34719 is a vulnerability in the CLI of Cisco IOS XR Software that could allow an authenticated, local attacker to elevate privileges on an affected device.
What is the severity of CVE-2021-34719?
The severity of CVE-2021-34719 is high, with a severity value of 7.8.
How does CVE-2021-34719 affect Cisco IOS XR Software?
CVE-2021-34719 affects Cisco IOS XR Software versions up to 7.3.2 and versions between 7.4.0 and 7.4.1.
How can an attacker exploit CVE-2021-34719?
An attacker with a low-privileged account can exploit CVE-2021-34719 by using the CLI of the affected device to elevate their privileges.
How can I fix CVE-2021-34719?
To fix CVE-2021-34719, upgrade Cisco IOS XR Software to a fixed version as mentioned in the advisory.
- agent/type
- agent/references
- agent/title
- agent/weakness
- agent/author
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios xrv 9000
- version/cisco ios xrv 9000/7.4.0
- version/cisco ios xrv 9000/7.4.1
- canonical/cisco asr 9000v
- canonical/cisco asr 9001
- canonical/cisco asr 9006 router
- canonical/cisco asr 9010 router
- canonical/cisco asr 9901-rp firmware
- canonical/cisco asr 9902
- canonical/cisco asr 9903
- canonical/cisco asr 9904
- canonical/cisco asr 9906
- canonical/cisco asr 9910
- canonical/cisco asr 9912
- canonical/cisco asr 9922
- canonical/cisco ios xr firmware
- canonical/cisco ncs 520
- canonical/cisco ncs 540
- canonical/cisco ncs 560-4
- canonical/cisco ncs 560-7
- canonical/cisco ncs 5001 firmware
- canonical/cisco ncs 5002
- canonical/cisco ncs 5011
- canonical/cisco ncs 4009
- canonical/cisco ncs 4016
- canonical/cisco ncs 5501-se
- canonical/cisco ncs 5502
- canonical/cisco ncs 5502-se firmware
- canonical/cisco ncs 5508
- canonical/cisco ncs 5516
- canonical/cisco ncs 6000
- canonical/cisco ncs 6008-8-slot chassis
- canonical/cisco ncs 1001
- canonical/cisco ncs 1002
- canonical/cisco ncs 1004 firmware
- canonical/cisco 8101-32h
- canonical/cisco 8102-64h
- canonical/cisco 8201
- canonical/cisco 8202
- canonical/cisco 8804
- canonical/cisco 8808
- canonical/cisco 8812
- canonical/cisco 8818