{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-29T12:33:29.138","vulnerabilities":[{"cve":{"id":"CVE-2021-1243","sourceIdentifier":"psirt@cisco.com","published":"2021-02-04T17:15:14.700","lastModified":"2024-11-21T05:43:54.650","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the Local Packet Transport Services (LPTS) programming of the SNMP with the management plane protection feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to allow connections despite the management plane protection that is configured to deny access to the SNMP server of an affected device. This vulnerability is due to incorrect LPTS programming when using SNMP with management plane protection. An attacker could exploit this vulnerability by connecting to an affected device using SNMP. A successful exploit could allow the attacker to connect to the device on the configured SNMP ports. Valid credentials are required to execute any of the SNMP requests."},{"lang":"es","value":"Una vulnerabilidad en la programación Local Packet Transport Services (LPTS) del SNMP con la funcionalidad de protección del plano de administración del Software Cisco IOS XR, podría permitir a un atacante remoto no autenticado habilitar conexiones a pesar de la protección del plano de administración que está configurada para denegar el acceso al servidor SNMP de un dispositivo afectado. Esta vulnerabilidad es debido a una programación LPTS incorrecta cuando se usa SNMP con protección del plano de administración. Un atacante podría explotar esta vulnerabilidad al conectar a un dispositivo afectado usando SNMP. Una explotación con éxito podría permitir al atacante conectarse al dispositivo en los puertos SNMP configurados. Las credenciales válidas son requeridas para ejecutar cualquiera de las peticiones SNMP"}],"metrics":{"cvssMetricV31":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:P/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*","versionStartExcluding":"6.1.1","versionEndExcluding":"6.6.4","matchCriteriaId":"430CEC0C-7611-4B21-8143-74180775FBA8"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0.0","versionEndExcluding":"7.0.2","matchCriteriaId":"00AFC058-2750-4A6F-B321-DF159214FCA5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xr:6.7.1:*:*:*:*:*:*:*","matchCriteriaId":"DB06AB15-7F91-4B17-BBBD-AC4E4D1EBF9E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xr:7.0.11:*:*:*:*:*:*:*","matchCriteriaId":"921B3622-76A3-4D9F-936C-25A965CE1A0E"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xr:7.1.0:*:*:*:*:*:*:*","matchCriteriaId":"24DF4040-86A9-46CA-8BAB-04D6016751D5"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xr:7.2.0:*:*:*:*:*:*:*","matchCriteriaId":"84BABFE7-1350-4FB0-B9ED-5F08E386BC40"}]}]}],"references":[{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-7MKrW7Nq","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-7MKrW7Nq","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}