CVE-2021-1419

HIGH

Cisco Access Points - Authenticated Privilege Escalation via SSH Management File Operations

Title source: llm

Description

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a local, authenticated user to modify files on the affected device and possibly gain escalated privileges. The vulnerability is due to improper checking on file operations within the SSH management interface. A network administrator user could exploit this vulnerability by accessing an affected device through SSH management to make a configuration change. A successful exploit could allow the attacker to gain privileges equivalent to the root user.

References (1)

Core 1

Core References

Patch, Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cisco-ap-LLjsGxv

Scores

CVSS v3 7.8

EPSS 0.0004

EPSS Percentile 10.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-284

Status published

Products (42)

cisco/1100-8p_firmware

cisco/1120_firmware

cisco/1160_firmware

cisco/aironet_1542d_firmware

cisco/aironet_1542i_firmware

cisco/aironet_1562d_firmware

cisco/aironet_1562e_firmware

cisco/aironet_1562i_firmware

cisco/aironet_1815i_firmware

cisco/aironet_1815m_firmware

... and 32 more

Published Sep 23, 2021

Tracked Since Feb 18, 2026