Cisco Managed Services Accelerator Denial of Service Vulnerability
CVE-2021-1266

4.3MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Managed Services Accelerator
Vendor: CVE Published:; 4 February 2021

Badges

👾 Exploit Exists

Summary

A vulnerability in the REST API of Cisco Managed Services Accelerator (MSX) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to the way that the affected software logs certain API requests. An attacker could exploit this vulnerability by sending a flood of crafted API requests to an affected device. A successful exploit could allow the attacker to cause a DoS condition on the affected device.

Affected Version(s)

Cisco Managed Services Accelerator

References

https://tools.cisco.com/security/center/content/CiscoSecu...

vendor-advisoryx_refsource_CISCO

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Aug 3, 2024
Vulnerability published
Feb 4, 2021
Vulnerability Reserved
Nov 13, 2020