Cisco Application Services Engine Unauthorized Access Vulnerabilities
CVE-2021-1393

9.8CRITICAL

Key Information:

Vendor: Cisco
Status: Cisco Application Services Engine Software
Vendor: CVE Published:; 24 February 2021

Badges

👾 Exploit Exists

Summary

Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote attacker to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For more information about these vulnerabilities, see the Details section of this advisory.

Affected Version(s)

Cisco Application Services Engine Software

References

https://tools.cisco.com/security/center/content/CiscoSecu...

vendor-advisoryx_refsource_CISCO

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Aug 3, 2024
Vulnerability published
Feb 24, 2021
Vulnerability Reserved
Nov 13, 2020