Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-1442

A vulnerability in a diagnostic command for the Plug-and-Play (PnP) subsystem of Cisco IOS XE Software could allow an authenticated, local attacker to elevate privileges to the level of an Administrator user (level 15) on an affected device. The vulnerability is due to insufficient protection of sensitive information. An attacker with low privileges could exploit this vulnerability by issuing the diagnostic CLI show pnp profile when a specific PnP listener is enabled on the device. A successful exploit could allow the attacker to obtain a privileged authentication token. This token can be used to send crafted PnP messages and execute privileged commands on the targeted system.

Published

2021-03-24T20:15:15.133

Last Modified

2024-11-21T05:44:22.433

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.4

Impact Score

10.0

Weaknesses

Type: Primary
CWE-532

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	ios_xe	3.6.3e	Yes
Operating System	cisco	ios_xe	3.6.4e	Yes
Operating System	cisco	ios_xe	3.6.5ae	Yes
Operating System	cisco	ios_xe	3.6.5be	Yes
Operating System	cisco	ios_xe	3.6.5e	Yes
Operating System	cisco	ios_xe	3.6.6e	Yes
Operating System	cisco	ios_xe	3.6.7ae	Yes
Operating System	cisco	ios_xe	3.6.7be	Yes
Operating System	cisco	ios_xe	3.6.7e	Yes
Operating System	cisco	ios_xe	3.6.8e	Yes
Operating System	cisco	ios_xe	3.6.9ae	Yes
Operating System	cisco	ios_xe	3.6.9e	Yes
Operating System	cisco	ios_xe	3.6.10e	Yes
Operating System	cisco	ios_xe	3.7.3e	Yes
Operating System	cisco	ios_xe	3.7.4e	Yes
Operating System	cisco	ios_xe	3.7.5e	Yes
Operating System	cisco	ios_xe	3.8.0e	Yes
Operating System	cisco	ios_xe	3.8.1e	Yes
Operating System	cisco	ios_xe	3.8.2e	Yes
Operating System	cisco	ios_xe	3.8.3e	Yes
Operating System	cisco	ios_xe	3.8.4e	Yes
Operating System	cisco	ios_xe	3.8.5ae	Yes
Operating System	cisco	ios_xe	3.8.5e	Yes
Operating System	cisco	ios_xe	3.8.6e	Yes
Operating System	cisco	ios_xe	3.8.7e	Yes
Operating System	cisco	ios_xe	3.8.8e	Yes
Operating System	cisco	ios_xe	3.8.9e	Yes
Operating System	cisco	ios_xe	3.8.10e	Yes
Operating System	cisco	ios_xe	3.9.0e	Yes
Operating System	cisco	ios_xe	3.9.1e	Yes
Operating System	cisco	ios_xe	3.9.2be	Yes
Operating System	cisco	ios_xe	3.9.2e	Yes
Operating System	cisco	ios_xe	3.10.0ce	Yes
Operating System	cisco	ios_xe	3.10.0e	Yes
Operating System	cisco	ios_xe	3.10.1ae	Yes
Operating System	cisco	ios_xe	3.10.1e	Yes
Operating System	cisco	ios_xe	3.10.1se	Yes
Operating System	cisco	ios_xe	3.10.2e	Yes
Operating System	cisco	ios_xe	3.10.3e	Yes
Operating System	cisco	ios_xe	3.11.0e	Yes
Operating System	cisco	ios_xe	3.11.1ae	Yes
Operating System	cisco	ios_xe	3.11.1e	Yes
Operating System	cisco	ios_xe	3.11.2ae	Yes
Operating System	cisco	ios_xe	3.11.2e	Yes
Operating System	cisco	ios_xe	3.13.8s	Yes
Operating System	cisco	ios_xe	3.13.9s	Yes
Operating System	cisco	ios_xe	3.13.10s	Yes
Operating System	cisco	ios_xe	3.16.0as	Yes
Operating System	cisco	ios_xe	3.16.0bs	Yes
Operating System	cisco	ios_xe	3.16.0cs	Yes
Operating System	cisco	ios_xe	3.16.0s	Yes
Operating System	cisco	ios_xe	3.16.1as	Yes
Operating System	cisco	ios_xe	3.16.1s	Yes
Operating System	cisco	ios_xe	3.16.2as	Yes
Operating System	cisco	ios_xe	3.16.2bs	Yes
Operating System	cisco	ios_xe	3.16.2s	Yes
Operating System	cisco	ios_xe	3.16.3as	Yes
Operating System	cisco	ios_xe	3.16.3s	Yes
Operating System	cisco	ios_xe	3.16.4as	Yes
Operating System	cisco	ios_xe	3.16.4bs	Yes
Operating System	cisco	ios_xe	3.16.4cs	Yes
Operating System	cisco	ios_xe	3.16.4ds	Yes
Operating System	cisco	ios_xe	3.16.4es	Yes
Operating System	cisco	ios_xe	3.16.4gs	Yes
Operating System	cisco	ios_xe	3.16.4s	Yes
Operating System	cisco	ios_xe	3.16.5as	Yes
Operating System	cisco	ios_xe	3.16.5bs	Yes
Operating System	cisco	ios_xe	3.16.5s	Yes
Operating System	cisco	ios_xe	3.16.6bs	Yes
Operating System	cisco	ios_xe	3.16.6s	Yes
Operating System	cisco	ios_xe	3.16.7as	Yes
Operating System	cisco	ios_xe	3.16.7bs	Yes
Operating System	cisco	ios_xe	3.16.7s	Yes
Operating System	cisco	ios_xe	3.16.8s	Yes
Operating System	cisco	ios_xe	3.16.9s	Yes
Operating System	cisco	ios_xe	3.16.10as	Yes
Operating System	cisco	ios_xe	3.16.10s	Yes
Operating System	cisco	ios_xe	3.17.0s	Yes
Operating System	cisco	ios_xe	3.17.1as	Yes
Operating System	cisco	ios_xe	3.17.1s	Yes
Operating System	cisco	ios_xe	3.17.2s	Yes
Operating System	cisco	ios_xe	3.17.3s	Yes
Operating System	cisco	ios_xe	3.17.4s	Yes
Operating System	cisco	ios_xe	3.18.0as	Yes
Operating System	cisco	ios_xe	3.18.0s	Yes
Operating System	cisco	ios_xe	3.18.0sp	Yes
Operating System	cisco	ios_xe	3.18.1asp	Yes
Operating System	cisco	ios_xe	3.18.1bsp	Yes
Operating System	cisco	ios_xe	3.18.1csp	Yes
Operating System	cisco	ios_xe	3.18.1gsp	Yes
Operating System	cisco	ios_xe	3.18.1hsp	Yes
Operating System	cisco	ios_xe	3.18.1isp	Yes
Operating System	cisco	ios_xe	3.18.1s	Yes
Operating System	cisco	ios_xe	3.18.1sp	Yes
Operating System	cisco	ios_xe	3.18.2asp	Yes
Operating System	cisco	ios_xe	3.18.2s	Yes
Operating System	cisco	ios_xe	3.18.2sp	Yes
Operating System	cisco	ios_xe	3.18.3asp	Yes
Operating System	cisco	ios_xe	3.18.3bsp	Yes
Operating System	cisco	ios_xe	3.18.3s	Yes
Operating System	cisco	ios_xe	3.18.3sp	Yes
Operating System	cisco	ios_xe	3.18.4s	Yes
Operating System	cisco	ios_xe	3.18.4sp	Yes
Operating System	cisco	ios_xe	3.18.5sp	Yes
Operating System	cisco	ios_xe	3.18.6sp	Yes
Operating System	cisco	ios_xe	3.18.7sp	Yes
Operating System	cisco	ios_xe	3.18.8asp	Yes
Operating System	cisco	ios_xe	3.18.8sp	Yes
Operating System	cisco	ios_xe	16.1.1	Yes
Operating System	cisco	ios_xe	16.1.2	Yes
Operating System	cisco	ios_xe	16.1.3	Yes
Operating System	cisco	ios_xe	16.2.1	Yes
Operating System	cisco	ios_xe	16.2.2	Yes
Operating System	cisco	ios_xe	16.3.1	Yes
Operating System	cisco	ios_xe	16.3.1a	Yes
Operating System	cisco	ios_xe	16.3.2	Yes
Operating System	cisco	ios_xe	16.3.3	Yes
Operating System	cisco	ios_xe	16.3.4	Yes
Operating System	cisco	ios_xe	16.3.5	Yes
Operating System	cisco	ios_xe	16.3.5b	Yes
Operating System	cisco	ios_xe	16.3.6	Yes
Operating System	cisco	ios_xe	16.3.7	Yes
Operating System	cisco	ios_xe	16.3.8	Yes
Operating System	cisco	ios_xe	16.3.9	Yes
Operating System	cisco	ios_xe	16.3.10	Yes
Operating System	cisco	ios_xe	16.3.11	Yes
Operating System	cisco	ios_xe	16.4.1	Yes
Operating System	cisco	ios_xe	16.4.2	Yes
Operating System	cisco	ios_xe	16.4.3	Yes
Operating System	cisco	ios_xe	16.5.1	Yes
Operating System	cisco	ios_xe	16.5.1a	Yes
Operating System	cisco	ios_xe	16.5.1b	Yes
Operating System	cisco	ios_xe	16.5.2	Yes
Operating System	cisco	ios_xe	16.5.3	Yes
Operating System	cisco	ios_xe	16.6.1	Yes
Operating System	cisco	ios_xe	16.6.2	Yes
Operating System	cisco	ios_xe	16.6.3	Yes
Operating System	cisco	ios_xe	16.6.4	Yes
Operating System	cisco	ios_xe	16.6.4a	Yes
Operating System	cisco	ios_xe	16.6.4s	Yes
Operating System	cisco	ios_xe	16.6.5	Yes
Operating System	cisco	ios_xe	16.6.5a	Yes
Operating System	cisco	ios_xe	16.6.5b	Yes
Operating System	cisco	ios_xe	16.6.6	Yes
Operating System	cisco	ios_xe	16.6.7	Yes
Operating System	cisco	ios_xe	16.6.7a	Yes
Operating System	cisco	ios_xe	16.6.8	Yes
Operating System	cisco	ios_xe	16.7.1	Yes
Operating System	cisco	ios_xe	16.7.1a	Yes
Operating System	cisco	ios_xe	16.7.1b	Yes
Operating System	cisco	ios_xe	16.7.2	Yes
Operating System	cisco	ios_xe	16.7.3	Yes
Operating System	cisco	ios_xe	16.7.4	Yes
Operating System	cisco	ios_xe	16.8.1	Yes
Operating System	cisco	ios_xe	16.8.1a	Yes
Operating System	cisco	ios_xe	16.8.1b	Yes
Operating System	cisco	ios_xe	16.8.1c	Yes
Operating System	cisco	ios_xe	16.8.1d	Yes
Operating System	cisco	ios_xe	16.8.1e	Yes
Operating System	cisco	ios_xe	16.8.1s	Yes
Operating System	cisco	ios_xe	16.8.2	Yes
Operating System	cisco	ios_xe	16.8.3	Yes
Operating System	cisco	ios_xe	16.9.1	Yes
Operating System	cisco	ios_xe	16.9.1a	Yes
Operating System	cisco	ios_xe	16.9.1b	Yes
Operating System	cisco	ios_xe	16.9.1c	Yes
Operating System	cisco	ios_xe	16.9.1d	Yes
Operating System	cisco	ios_xe	16.9.1s	Yes
Operating System	cisco	ios_xe	16.9.2	Yes
Operating System	cisco	ios_xe	16.9.2a	Yes
Operating System	cisco	ios_xe	16.9.2s	Yes
Operating System	cisco	ios_xe	16.9.3	Yes
Operating System	cisco	ios_xe	16.9.3a	Yes
Operating System	cisco	ios_xe	16.9.3h	Yes
Operating System	cisco	ios_xe	16.9.3s	Yes
Operating System	cisco	ios_xe	16.9.4	Yes
Operating System	cisco	ios_xe	16.9.4c	Yes
Operating System	cisco	ios_xe	16.9.5	Yes
Operating System	cisco	ios_xe	16.9.5f	Yes
Operating System	cisco	ios_xe	16.9.6	Yes
Operating System	cisco	ios_xe	16.10.1	Yes
Operating System	cisco	ios_xe	16.10.1a	Yes
Operating System	cisco	ios_xe	16.10.1b	Yes
Operating System	cisco	ios_xe	16.10.1c	Yes
Operating System	cisco	ios_xe	16.10.1d	Yes
Operating System	cisco	ios_xe	16.10.1e	Yes
Operating System	cisco	ios_xe	16.10.1f	Yes
Operating System	cisco	ios_xe	16.10.1g	Yes
Operating System	cisco	ios_xe	16.10.1s	Yes
Operating System	cisco	ios_xe	16.10.2	Yes
Operating System	cisco	ios_xe	16.10.3	Yes
Operating System	cisco	ios_xe	16.11.1	Yes
Operating System	cisco	ios_xe	16.11.1a	Yes
Operating System	cisco	ios_xe	16.11.1b	Yes
Operating System	cisco	ios_xe	16.11.1c	Yes
Operating System	cisco	ios_xe	16.11.1s	Yes
Operating System	cisco	ios_xe	16.11.2	Yes
Operating System	cisco	ios_xe	16.12.1	Yes
Operating System	cisco	ios_xe	16.12.1a	Yes
Operating System	cisco	ios_xe	16.12.1c	Yes
Operating System	cisco	ios_xe	16.12.1s	Yes
Operating System	cisco	ios_xe	16.12.1t	Yes
Operating System	cisco	ios_xe	16.12.1w	Yes
Operating System	cisco	ios_xe	16.12.1x	Yes
Operating System	cisco	ios_xe	16.12.1y	Yes
Operating System	cisco	ios_xe	16.12.1z	Yes
Operating System	cisco	ios_xe	16.12.2	Yes
Operating System	cisco	ios_xe	16.12.2a	Yes
Operating System	cisco	ios_xe	16.12.2s	Yes
Operating System	cisco	ios_xe	16.12.2t	Yes
Operating System	cisco	ios_xe	16.12.3	Yes
Operating System	cisco	ios_xe	16.12.3a	Yes
Operating System	cisco	ios_xe	16.12.3s	Yes
Operating System	cisco	ios_xe	16.12.4	Yes
Operating System	cisco	ios_xe	16.12.4a	Yes
Operating System	cisco	ios_xe	17.1.1	Yes
Operating System	cisco	ios_xe	17.1.1a	Yes
Operating System	cisco	ios_xe	17.1.1s	Yes
Operating System	cisco	ios_xe	17.1.1t	Yes
Operating System	cisco	ios_xe	17.1.2	Yes
Operating System	cisco	ios_xe	17.2.1	Yes
Operating System	cisco	ios_xe	17.2.1a	Yes
Operating System	cisco	ios_xe	17.2.1r	Yes
Operating System	cisco	ios_xe	17.2.1v	Yes

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-pnp-priv-esc-AmG3kuVL Vendor Advisory ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-pnp-priv-esc-AmG3kuVL Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)