Rewterz Threat Alert – Dridex Banking Trojan – Active IOCs
June 3, 2021Rewterz Threat Advisory – CVE-2021-26094 – FortiWLC – Multiple Buffer Overflow Vulnerabilities
June 3, 2021Rewterz Threat Alert – Dridex Banking Trojan – Active IOCs
June 3, 2021Rewterz Threat Advisory – CVE-2021-26094 – FortiWLC – Multiple Buffer Overflow Vulnerabilities
June 3, 2021Severity
Medium
Analysis Summary
CVE-2021-1539
A vulnerability in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote attacker to bypass TACACS authorization on an affected device. An attacker could exploit this vulnerability by sending a crafted Secure Shell (SSH) request to an affected device. A successful exploit could allow the attacker to bypass TACACS authorization and execute a subset of CLI commands on the affected device.
CVE-2021-1540
A vulnerability in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow an authenticated, remote attacker with an administrator account that is configured with the nocli option to bypass authorization on an affected device. An attacker could exploit this vulnerability by sending a crafted SSH request to an affected device. A successful exploit could allow the attacker to bypass the nocli option and execute a subset of CLI commands on the affected device.
Impact
- Security Bypass
- Unauthorized Access
Affected Vendors
Cisco
Affected Products
- ASR 5000 Series Aggregation Services Router
- Virtualized Packet Core Distributed Instance (VPC-DI)
- Virtualized Packet Core Single Instance (VPC-SI)
Remediation
Refer to Cisco advisory for the complete list of affected product and their respective patches.