cisco vedge_100_firmware 内存缓冲区边界内操作的限制不恰当

admin

0
文章

0
评论

2023-12-01 14:51:22 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

cisco vedge_100_firmware 内存缓冲区边界内操作的限制不恰当

CVE编号

CVE-2021-1509

利用情况

暂无

补丁情况

N/A

披露时间

2021-05-06

漏洞描述

Cisco SD-WAN vEdge是美国思科（Cisco）公司的是一款路由器。该设备可为思科SD-WAN解决方案提供基本WAN，安全性和多云功能。 Cisco SD-WAN vEdge存在缓冲区溢出漏洞，攻击者可通过发送恶意流量利用该漏洞导致缓冲区溢出。

解决建议

厂商已发布了漏洞修复程序，请及时关注更新：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-buffover-MWGucjtO

参考链接
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-s...

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	cisco	vedge-100b_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge-100b_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge-100b_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge-cloud_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge-cloud_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge-cloud_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge_1000_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge_1000_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge_1000_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge_100b_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge_100b_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge_100b_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge_100m_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge_100m_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge_100m_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge_100wm_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge_100wm_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge_100wm_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge_100_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge_100_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge_100_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge_2000_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge_2000_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge_2000_firmware	19.2.99	-
	运行在以下环境
	系统	cisco	vedge_5000_firmware	*	From (including) 20.4:	Up to (excluding) 20.4.1:
	运行在以下环境
	系统	cisco	vedge_5000_firmware	*	From (including) 20.5:	Up to (excluding) 20.5.1:
	运行在以下环境
	系统	cisco	vedge_5000_firmware	19.2.99	-
	运行在以下环境
	硬件	cisco	vedge-100b	-	-
	运行在以下环境
	硬件	cisco	vedge-cloud	-	-
	运行在以下环境
	硬件	cisco	vedge_100	-	-
	运行在以下环境
	硬件	cisco	vedge_1000	-	-
	运行在以下环境
硬件	cisco	vedge_100b	-	-
运行在以下环境
硬件	cisco	vedge_100m	-	-
运行在以下环境
硬件	cisco	vedge_100wm	-	-
运行在以下环境
硬件	cisco	vedge_2000	-	-
运行在以下环境
硬件	cisco	vedge_5000	-	-