What is CVE-2021-1547?

CVE-2021-1547 is a medium-severity vulnerability in Cisco Business Wireless Access Point Software, classified under Command Injection. CVSS score: 4.7/10. Published 2021-05-22.

How severe is CVE-2021-1547?

Medium severity. CVSS v3 base score is 4.7 out of 10.

RCE in Cisco Business Wireless Access Point Software

CVE-2021-1547

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an af…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.006 (69.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.7 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L.

Affected products

Cisco Business Wireless Access Point Software — versions n/a

Weakness classification (CWE)

CWE-77 — Command Injection

References

20210519 Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection Vulnerabilities (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2021-1547?: CVE-2021-1547 is a medium-severity vulnerability in Cisco Business Wireless Access Point Software, classified under Command Injection. CVSS score: 4.7/10. Published 2021-05-22.
How severe is CVE-2021-1547?: Medium severity. CVSS v3 base score is 4.7 out of 10.