CVE Vulnerability
CVE-2021-1560
Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote attacker to perform a command injection attack on an affected device. These vulnerabilities are due to insufficient input sanitization when executing affected commands. A high-privileged attacker could exploit these vulnerabilities on a Cisco DNA Spaces Connector by injecting crafted input during command execution. A successful exploit could allow the attacker to execute arbitrary commands as root within the Connector docker container.
References
| Link | Resource |
|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnasp-conn-cmdinj-HOj4YV5n | Vendor Advisory |
Configurations
Configuration 1
|
Information
Published : 2021-05-22 07:15
Updated : 2022-04-26 04:05
NVD link : CVE-2021-1560
Mitre link : CVE-2021-1560
Products Affected
No products.
CWE