{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-01T09:44:40.747","vulnerabilities":[{"cve":{"id":"CVE-2021-1580","sourceIdentifier":"psirt@cisco.com","published":"2021-08-25T20:15:10.493","lastModified":"2024-11-21T05:44:40.123","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy Infrastructure Controller (APIC) or Cisco Cloud APIC could allow a remote attacker to perform a command injection or file upload attack on an affected system. For more information about these vulnerabilities, see the Details section of this advisory."},{"lang":"es","value":"Múltiples vulnerabilidades en la interfaz de usuario web y los endpoints de la API de Cisco Application Policy Infrastructure Controller (APIC) o Cisco Cloud APIC podrían permitir a un atacante remoto llevar a cabo un ataque de inyección de comandos o de carga de archivos en un sistema afectado. Para obtener más información sobre estas vulnerabilidades, consulte la sección Details de este aviso."}],"metrics":{"cvssMetricV31":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":5.2},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-77"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:application_policy_infrastructure_controller:*:*:*:*:*:*:*:*","versionEndExcluding":"3.2\\(10e\\)","matchCriteriaId":"FBD10720-FB92-47CF-9F2B-90D09945DE86"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:application_policy_infrastructure_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0","versionEndExcluding":"4.2\\(6h\\)","matchCriteriaId":"3F9513E4-EC22-40D0-9339-49926BEB9947"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:application_policy_infrastructure_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0","versionEndExcluding":"5.1\\(3e\\)","matchCriteriaId":"1DEF7843-7BCB-47A7-AD56-A102AC67BD47"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:cloud_application_policy_infrastructure_controller:*:*:*:*:*:*:*:*","versionEndExcluding":"3.2\\(10e\\)","matchCriteriaId":"09451843-4634-4B4F-B005-7CB1747B244D"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:cloud_application_policy_infrastructure_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"4.0","versionEndExcluding":"4.2\\(6h\\)","matchCriteriaId":"CAA718C7-5A6D-406A-9AC7-E339BB652F0C"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:cloud_application_policy_infrastructure_controller:*:*:*:*:*:*:*:*","versionStartIncluding":"5.0","versionEndExcluding":"5.1\\(3e\\)","matchCriteriaId":"9DCB6614-D3C4-46A9-88D5-00D28E74485D"}]}]}],"references":[{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-capic-mdvul-HBsJBuvW","source":"psirt@cisco.com","tags":["Patch","Vendor Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-capic-mdvul-HBsJBuvW","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}