How severe is CVE-2021-1256?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6 out of 10.

What type of vulnerability is CVE-2021-1256?

This is classified as CWE-552, which is a common weakness in software security.

CVE-2021-1256 - MEDIUM Severity | CVSS 6

Vulnerability Description

A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite files on the file system of an affected device by using directory traversal techniques. A successful exploit could cause system instability if important system files are overwritten. This vulnerability is due to insufficient validation of user input for the file path in a specific CLI command. An attacker could exploit this vulnerability by logging in to a targeted device and issuing a specific CLI command with crafted user input. A successful exploit could allow the attacker to overwrite arbitrary files on the file system of the affected device. The attacker would need valid user credentials on the device.

Related Vulnerabilities

CVE-2021-1434

MEDIUM

CVSS:6.0(Medium)

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system. This vulnerability is due to insuffi...

CWE-5522021

CVE-2025-25799

MEDIUM

CVSS:6.0(Medium)

SeaCMS 13.3 was discovered to contain an arbitrary file read vulnerability in the file_get_contents function at admin_safe.php.

CWE-5522025

CVE-2017-2621

MEDIUM

CVSS:5.9(Medium)

An access-control flaw was found in the OpenStack Orchestration (heat) service before 8.0.0, 6.1.0 and 7.0.2 where a service log directory was improperly made world readable. A malicious system user c...

CWE-5522017

CVE-2020-1726

MEDIUM

CVSS:5.9(Medium)

A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious containe...

CWE-5522020

CVE-2021-29969

MEDIUM

CVSS:5.9(Medium)

If Thunderbird was configured to use STARTTLS for an IMAP connection, and an attacker injected IMAP server responses prior to the completion of the STARTTLS handshake, then Thunderbird didn't ignore t...

CWE-5522021

CVE-2021-31850

MEDIUM

CVSS:6.1(Medium)

A denial-of-service vulnerability in Database Security (DBS) prior to 4.8.4 allows a remote authenticated administrator to trigger a denial-of-service attack against the DBS server. The configuration ...

CWE-5522021