What is CVE-2021-1274?

CVE-2021-1274 is a high-severity vulnerability in Cisco Sd-wan Solution, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.6/10. Published 2021-01-20.

How severe is CVE-2021-1274?

High severity. CVSS v3 base score is 8.6 out of 10.

Buffer overflow in Cisco Sd-wan Solution

CVE-2021-1274

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about these vulnerabilities, see the Details sect…

Vulnerability class: Buffer Overflow

EPSS: 0.007 (72.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.

Affected products

Cisco Sd-wan Solution — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

20210120 Cisco SD-WAN Denial of Service Vulnerabilities (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2021-1274?: CVE-2021-1274 is a high-severity vulnerability in Cisco Sd-wan Solution, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.6/10. Published 2021-01-20.
How severe is CVE-2021-1274?: High severity. CVSS v3 base score is 8.6 out of 10.