CVE-2021-1462

medium

Description

Cisco SD-WAN vManage Software could allow a local authenticated malicious user to gain elevated privileges on the system, caused by incorrect privilege assignment. By logging in to an affected system with an Administrator account and creating a malicious file, an attacker could exploit this vulnerability to obtain root privileges.

Details

Source: Mitre, NVD

Published: 2021-03-11

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 4.4

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N