Strix
26.1K

CVE-2021-34794

MEDIUMCVSS 5.3/10EPSS 0.91%

Last modified

CVE-2021-34794 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. A vulnerability in the Simple Network Management Protocol version 3 (SNMPv3) access control functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to query SNMP data. This vulnerability is due to ineffective access control. EPSS estimates a 0.91% chance of exploitation in the next 30 days.

Description

A vulnerability in the Simple Network Management Protocol version 3 (SNMPv3) access control functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to query SNMP data. This vulnerability is due to ineffective access control. An attacker could exploit this vulnerability by sending an SNMPv3 query to an affected device from a host that is not permitted by the SNMPv3 access control list. A successful exploit could allow the attacker to send an SNMP query to an affected device and retrieve information from the device. The attacker would need valid credentials to perform the SNMP query.

Metrics

CVSS 3.1
5.3/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS Probability
0.91%

55.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoFirepower Threat Defense>= 6.4.0, < 6.4.0.13
CiscoFirepower Threat Defense>= 6.5.0, < 6.6.5
CiscoFirepower Threat Defense>= 6.7.0, < 6.7.0.1
CiscoAdaptive Security Appliance Software>= 9.14.0, < 9.14.2.4
CiscoAdaptive Security Appliance Software>= 9.15.0, < 9.15.1.7
CiscoAsa 5512-X Firmware009.014\(001\)
CiscoAsa 5512-X Firmware099.015\(001.033\)
CiscoAsa 5512-X Firmware099.016\(001.216\)
CiscoAsa 5505 Firmware009.014\(001\)
CiscoAsa 5505 Firmware099.015\(001.033\)
CiscoAsa 5505 Firmware099.016\(001.216\)
CiscoAsa 5515-X Firmware009.014\(001\)
CiscoAsa 5515-X Firmware099.015\(001.033\)
CiscoAsa 5515-X Firmware099.016\(001.216\)
CiscoAsa 5525-X Firmware009.014\(001\)
CiscoAsa 5525-X Firmware099.015\(001.033\)
CiscoAsa 5525-X Firmware099.016\(001.216\)
CiscoAsa 5545-X Firmware009.014\(001\)
CiscoAsa 5545-X Firmware099.015\(001.033\)
CiscoAsa 5545-X Firmware099.016\(001.216\)
CiscoAsa 5555-X Firmware009.014\(001\)
CiscoAsa 5555-X Firmware099.015\(001.033\)
CiscoAsa 5555-X Firmware099.016\(001.216\)
CiscoAsa 5580 Firmware009.014\(001\)
CiscoAsa 5580 Firmware099.015\(001.033\)
CiscoAsa 5580 Firmware099.016\(001.216\)
CiscoAsa 5585-X Firmware009.014\(001\)
CiscoAsa 5585-X Firmware099.015\(001.033\)
CiscoAsa 5585-X Firmware099.016\(001.216\)

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2021-34794?
A vulnerability in the Simple Network Management Protocol version 3 (SNMPv3) access control functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to query SNMP data. This vulnerability is due to ineffective access control. An attacker could exploit this vulnerability by sending an SNMPv3 query to an affected device from a host that is not permitted by the SNMPv3 access control list. A successful exploit could allow the attacker to send an SNMP query to an affected device and retrieve information from the device. The attacker would need valid credentials to perform the SNMP query.
How severe is CVE-2021-34794?
CVE-2021-34794 has a CVSS score of 5.3/10 (MEDIUM severity). The EPSS model estimates a 0.91% probability of exploitation in the next 30 days.
How do I fix CVE-2021-34794?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-34794?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST