Strix
26.1K

CVE-2021-40127

MEDIUMCVSS 5.3/10EPSS 1.24%

Last modified

CVE-2021-40127 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switches, Cisco Small Business 300 Series Managed Switches, and Cisco Small Business 500 Series Stackable Managed Switches could allow an unauthenticated, remote attacker to render the web-based management interface unusable, resulting in a denial of service (DoS) condition. This vulnerability is due to improper validation of HTTP requests. EPSS estimates a 1.24% chance of exploitation in the next 30 days.

Description

A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switches, Cisco Small Business 300 Series Managed Switches, and Cisco Small Business 500 Series Stackable Managed Switches could allow an unauthenticated, remote attacker to render the web-based management interface unusable, resulting in a denial of service (DoS) condition. This vulnerability is due to improper validation of HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to cause a permanent invalid redirect for requests sent to the web-based management interface of the device, resulting in a DoS condition.

Metrics

CVSS 3.1
5.3/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

EPSS Probability
1.24%

65.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoSf200-24 FirmwareAll versions
CiscoSf200-24fp FirmwareAll versions
CiscoSf200-24p FirmwareAll versions
CiscoSf200-48 FirmwareAll versions
CiscoSf200-48p FirmwareAll versions
CiscoSf200e-24 FirmwareAll versions
CiscoSf200e-24p FirmwareAll versions
CiscoSf200e-48 FirmwareAll versions
CiscoSf200e-48p FirmwareAll versions
CiscoSg200-08 FirmwareAll versions
CiscoSg200-08p FirmwareAll versions
CiscoSg200-10fp FirmwareAll versions
CiscoSg200-18 FirmwareAll versions
CiscoSg200-26 FirmwareAll versions
CiscoSg200-26fp FirmwareAll versions
CiscoSg200-26p FirmwareAll versions
CiscoSg200-50 FirmwareAll versions
CiscoSg200-50fp FirmwareAll versions
CiscoSg200-50p FirmwareAll versions
CiscoSf300-08 Firmware1.4.11.02
CiscoSf300-24 Firmware1.4.11.02
CiscoSf300-24mp Firmware1.4.11.02
CiscoSf300-24p Firmware1.4.11.02
CiscoSf300-24pp Firmware1.4.11.02
CiscoSf300-48 Firmware1.4.11.02
CiscoSf300-48p Firmware1.4.11.02
CiscoSf300-48pp Firmware1.4.11.02
CiscoSf302-08 Firmware1.4.11.02
CiscoSf302-08mp Firmware1.4.11.02
CiscoSf302-08mpp Firmware1.4.11.02
CiscoSf302-08p Firmware1.4.11.02
CiscoSf302-08pp Firmware1.4.11.02
CiscoSg300-10 Firmware1.4.11.02
CiscoSg300-10mp Firmware1.4.11.02
CiscoSg300-10mpp Firmware1.4.11.02
CiscoSg300-10p Firmware1.4.11.02
CiscoSg300-10pp Firmware1.4.11.02
CiscoSg300-Sfp Firmware1.4.11.02
CiscoSg300-20 Firmware1.4.11.02
CiscoSg300-28 Firmware1.4.11.02
CiscoSg300-28mp Firmware1.4.11.02
CiscoSg300-28p Firmware1.4.11.02
CiscoSg300-28pp Firmware1.4.11.02
CiscoSg300-28sfp Firmware1.4.11.02
CiscoSg300-52 Firmware1.4.11.02
CiscoSg300-52mp Firmware1.4.11.02
CiscoSg300-52p Firmware1.4.11.02
CiscoSf500-24 FirmwareAll versions
CiscoSf500-24mp FirmwareAll versions
CiscoSf500-24p FirmwareAll versions

Showing 50 of 66 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2021-40127?
A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switches, Cisco Small Business 300 Series Managed Switches, and Cisco Small Business 500 Series Stackable Managed Switches could allow an unauthenticated, remote attacker to render the web-based management interface unusable, resulting in a denial of service (DoS) condition. This vulnerability is due to improper validation of HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to cause a permanent invalid redirect for requests sent to the web-based management interface of the device, resulting in a DoS condition.
How severe is CVE-2021-40127?
CVE-2021-40127 has a CVSS score of 5.3/10 (MEDIUM severity). The EPSS model estimates a 1.24% probability of exploitation in the next 30 days.
How do I fix CVE-2021-40127?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-40127?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST