Lucene search
CiscoCISCO-SA-XE-FSM-YJ8QJBJCHistoryMar 24, 2021 - 4:00 p.m.
Cisco IOS and IOS XE Software Privilege Escalation Vulnerability
2021-03-2416:00:00
tools.cisco.com
77
cisco
ios
xe software
privilege escalation
vulnerability
local attacker
root privilege
development testing
consent token
software updates
security advisory
EPSS
0
Percentile
5.1%
A vulnerability in the dragonite debugger of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker to escalate from privilege level 15 to root privilege.
The vulnerability is due to the presence of development testing and verification scripts that remained on the device. An attacker could exploit this vulnerability by bypassing the consent token mechanism with the residual scripts on the affected device. A successful exploit could allow the attacker to escalate from privilege level 15 to root privilege.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-FSM-Yj8qJbJc [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-XE-FSM-Yj8qJbJc”]
Affected configurations
Node
ciscoiosMatch15.0se
ORciscoiosMatch15.2e
ORciscoiosMatch15.2ex
ORciscoiosMatch15.2eb
ORciscoiosMatch15.2ea
ORciscoiosMatch15.3jf
ORciscoiosMatch12.2i
ORciscoiosMatch15.1svr
ORciscoiosMatch15.1svs
ORciscoiosMatchany
ORciscocisco_ios_xe_softwareMatch3.9e
ORciscocisco_ios_xe_softwareMatch16.8
ORciscocisco_ios_xe_softwareMatch16.9
ORciscocisco_ios_xe_softwareMatch16.10
ORciscocisco_ios_xe_softwareMatch3.10e
ORciscocisco_ios_xe_softwareMatch16.11
ORciscocisco_ios_xe_softwareMatch16.12
ORciscocisco_ios_xe_softwareMatch3.11e
ORciscocisco_ios_xe_softwareMatch17.1
ORciscocisco_ios_xe_softwareMatch17.2
ORciscocisco_ios_xe_softwareMatchany
ORciscoiosMatch15.0\(2\)se13a
ORciscoiosMatch15.2\(5\)e
ORciscoiosMatch15.2\(5a\)e
ORciscoiosMatch15.2\(5\)e1
ORciscoiosMatch15.2\(5b\)e
ORciscoiosMatch15.2\(5c\)e
ORciscoiosMatch15.2\(5a\)e1
ORciscoiosMatch15.2\(5\)e2
ORciscoiosMatch15.2\(6\)e
ORciscoiosMatch15.2\(5\)e2b
ORciscoiosMatch15.2\(5\)e2c
ORciscoiosMatch15.2\(6\)e0a
ORciscoiosMatch15.2\(6\)e1
ORciscoiosMatch15.2\(6\)e0c
ORciscoiosMatch15.2\(6\)e2
ORciscoiosMatch15.2\(6\)e1a
ORciscoiosMatch15.2\(6\)e1s
ORciscoiosMatch15.2\(7\)e
ORciscoiosMatch15.2\(6\)e2a
ORciscoiosMatch15.2\(6\)e2b
ORciscoiosMatch15.2\(7\)e1
ORciscoiosMatch15.2\(7\)e0a
ORciscoiosMatch15.2\(7\)e0b
ORciscoiosMatch15.2\(7\)e0s
ORciscoiosMatch15.2\(6\)e3
ORciscoiosMatch15.2\(7\)e2
ORciscoiosMatch15.2\(7a\)e0b
ORciscoiosMatch15.2\(7\)e3
ORciscoiosMatch15.2\(7\)e1a
ORciscoiosMatch15.2\(7b\)e0b
ORciscoiosMatch15.2\(7\)e2a
ORciscoiosMatch15.2\(7\)e2b
ORciscoiosMatch15.2\(7\)e3k
ORciscoiosMatch15.2\(5\)ex
ORciscoiosMatch15.2\(6\)eb
ORciscoiosMatch15.2\(5\)ea
ORciscoiosMatch15.2\(4\)ea10
ORciscoiosMatch15.3\(3\)jf13
ORciscoiosMatch12.2\(6\)i1
ORciscoiosMatch15.1\(3\)svr1
ORciscoiosMatch15.1\(3\)svr2
ORciscoiosMatch15.1\(3\)svr3
ORciscoiosMatch15.1\(3\)svs
ORciscoiosMatch15.1\(3\)svs1
ORciscoiosMatchany
ORciscocisco_ios_xe_softwareMatch3.9.0e
ORciscocisco_ios_xe_softwareMatch3.9.1e
ORciscocisco_ios_xe_softwareMatch3.9.2e
ORciscocisco_ios_xe_softwareMatch3.9.2be
ORciscocisco_ios_xe_softwareMatch16.8.1
ORciscocisco_ios_xe_softwareMatch16.8.1a
ORciscocisco_ios_xe_softwareMatch16.8.1b
ORciscocisco_ios_xe_softwareMatch16.8.1s
ORciscocisco_ios_xe_softwareMatch16.8.1c
ORciscocisco_ios_xe_softwareMatch16.8.1d
ORciscocisco_ios_xe_softwareMatch16.8.2
ORciscocisco_ios_xe_softwareMatch16.8.1e
ORciscocisco_ios_xe_softwareMatch16.8.3
ORciscocisco_ios_xe_softwareMatch16.9.1
ORciscocisco_ios_xe_softwareMatch16.9.2
ORciscocisco_ios_xe_softwareMatch16.9.1a
ORciscocisco_ios_xe_softwareMatch16.9.1b
ORciscocisco_ios_xe_softwareMatch16.9.1s
ORciscocisco_ios_xe_softwareMatch16.9.1c
ORciscocisco_ios_xe_softwareMatch16.9.1d
ORciscocisco_ios_xe_softwareMatch16.9.3
ORciscocisco_ios_xe_softwareMatch16.9.2a
ORciscocisco_ios_xe_softwareMatch16.9.2s
ORciscocisco_ios_xe_softwareMatch16.9.3h
ORciscocisco_ios_xe_softwareMatch16.9.4
ORciscocisco_ios_xe_softwareMatch16.9.3s
ORciscocisco_ios_xe_softwareMatch16.9.3a
ORciscocisco_ios_xe_softwareMatch16.9.4c
ORciscocisco_ios_xe_softwareMatch16.9.5
ORciscocisco_ios_xe_softwareMatch16.9.5f
ORciscocisco_ios_xe_softwareMatch16.9.6
ORciscocisco_ios_xe_softwareMatch16.10.1
ORciscocisco_ios_xe_softwareMatch16.10.1a
ORciscocisco_ios_xe_softwareMatch16.10.1b
ORciscocisco_ios_xe_softwareMatch16.10.1s
ORciscocisco_ios_xe_softwareMatch16.10.1c
ORciscocisco_ios_xe_softwareMatch16.10.1e
ORciscocisco_ios_xe_softwareMatch16.10.1d
ORciscocisco_ios_xe_softwareMatch16.10.2
ORciscocisco_ios_xe_softwareMatch16.10.1f
ORciscocisco_ios_xe_softwareMatch16.10.1g
ORciscocisco_ios_xe_softwareMatch16.10.3
ORciscocisco_ios_xe_softwareMatch3.10.0e
ORciscocisco_ios_xe_softwareMatch3.10.1e
ORciscocisco_ios_xe_softwareMatch3.10.0ce
ORciscocisco_ios_xe_softwareMatch3.10.2e
ORciscocisco_ios_xe_softwareMatch3.10.1ae
ORciscocisco_ios_xe_softwareMatch3.10.1se
ORciscocisco_ios_xe_softwareMatch3.10.3e
ORciscocisco_ios_xe_softwareMatch16.11.1
ORciscocisco_ios_xe_softwareMatch16.11.1a
ORciscocisco_ios_xe_softwareMatch16.11.1b
ORciscocisco_ios_xe_softwareMatch16.11.2
ORciscocisco_ios_xe_softwareMatch16.11.1s
ORciscocisco_ios_xe_softwareMatch16.11.1c
ORciscocisco_ios_xe_softwareMatch16.12.1
ORciscocisco_ios_xe_softwareMatch16.12.1s
ORciscocisco_ios_xe_softwareMatch16.12.1a
ORciscocisco_ios_xe_softwareMatch16.12.1c
ORciscocisco_ios_xe_softwareMatch16.12.1w
ORciscocisco_ios_xe_softwareMatch16.12.2
ORciscocisco_ios_xe_softwareMatch16.12.1y
ORciscocisco_ios_xe_softwareMatch16.12.2a
ORciscocisco_ios_xe_softwareMatch16.12.3
ORciscocisco_ios_xe_softwareMatch16.12.2s
ORciscocisco_ios_xe_softwareMatch16.12.1x
ORciscocisco_ios_xe_softwareMatch16.12.1t
ORciscocisco_ios_xe_softwareMatch16.12.2t
ORciscocisco_ios_xe_softwareMatch16.12.3s
ORciscocisco_ios_xe_softwareMatch16.12.1z
ORciscocisco_ios_xe_softwareMatch16.12.3a
ORciscocisco_ios_xe_softwareMatch16.12.1z2
ORciscocisco_ios_xe_softwareMatch3.11.0e
ORciscocisco_ios_xe_softwareMatch3.11.1e
ORciscocisco_ios_xe_softwareMatch3.11.2e
ORciscocisco_ios_xe_softwareMatch3.11.3e
ORciscocisco_ios_xe_softwareMatch3.11.1ae
ORciscocisco_ios_xe_softwareMatch3.11.2ae
ORciscocisco_ios_xe_softwareMatch3.11.3ae
ORciscocisco_ios_xe_softwareMatch17.1.1
ORciscocisco_ios_xe_softwareMatch17.1.1a
ORciscocisco_ios_xe_softwareMatch17.1.1s
ORciscocisco_ios_xe_softwareMatch17.1.2
ORciscocisco_ios_xe_softwareMatch17.1.1t
ORciscocisco_ios_xe_softwareMatch17.2.1
ORciscocisco_ios_xe_softwareMatch17.2.1r
ORciscocisco_ios_xe_softwareMatch17.2.1a
ORciscocisco_ios_xe_softwareMatch17.2.1v
ORciscocisco_ios_xe_softwareMatch17.2.2
ORciscocisco_ios_xe_softwareMatchany
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | ios | 15.0se | cpe:2.3:o:cisco:ios:15.0se:*:*:*:*:*:*:* |
| cisco | ios | 15.2e | cpe:2.3:o:cisco:ios:15.2e:*:*:*:*:*:*:* |
| cisco | ios | 15.2ex | cpe:2.3:o:cisco:ios:15.2ex:*:*:*:*:*:*:* |
| cisco | ios | 15.2eb | cpe:2.3:o:cisco:ios:15.2eb:*:*:*:*:*:*:* |
| cisco | ios | 15.2ea | cpe:2.3:o:cisco:ios:15.2ea:*:*:*:*:*:*:* |
| cisco | ios | 15.3jf | cpe:2.3:o:cisco:ios:15.3jf:*:*:*:*:*:*:* |
| cisco | ios | 12.2i | cpe:2.3:o:cisco:ios:12.2i:*:*:*:*:*:*:* |
| cisco | ios | 15.1svr | cpe:2.3:o:cisco:ios:15.1svr:*:*:*:*:*:*:* |
| cisco | ios | 15.1svs | cpe:2.3:o:cisco:ios:15.1svs:*:*:*:*:*:*:* |
| cisco | ios | any | cpe:2.3:o:cisco:ios:any:*:*:*:*:*:*:* |
Related
nessus
nessus
Cisco IOS XE Software Privilege Escalation (cisco-sa-XE-FSM-Yj8qJbJc)
2021-03-29 00:00:00
Cisco IOS Software Privilege Escalation (cisco-sa-XE-FSM-Yj8qJbJc)
2021-03-29 00:00:00
cvelist
cvelist
prion
prion
Privilege escalation
2021-03-24 20:15:00
cve
cve
CVE-2021-1391
2021-03-24 20:15:13
nvd
nvd
CVE-2021-1391
2021-03-24 20:15:13