Cisco Security Advisory - Cisco Application Policy Infrastructure Controller Command Injection and File Upload Vulnerabilities

Started by Netwörkheäd, August 29, 2021, 06:03:09 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

August 29, 2021, 06:03:09 AM
Cisco Application Policy Infrastructure Controller Command Injection and File Upload Vulnerabilities

Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow a remote attacker to perform a command injection or file upload attack on an affected system.


For more information about these vulnerabilities, see the Details section of this advisory.


Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.


This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-capic-mdvul-HBsJBuvW


     
         
Security Impact Rating:  Medium
   
   
       
CVE: CVE-2021-1580,CVE-2021-1581
Source: Cisco Application Policy Infrastructure Controller Command Injection and File Upload Vulnerabilities
Let's not argue. Let's network!
Print
Go Up Pages1
User actions