How severe is CVE-2021-1592?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.3 out of 10.

What type of vulnerability is CVE-2021-1592?

This is classified as CWE-664, which is a common weakness in software security.

CVE-2021-1592 - MEDIUM Severity | CVSS 4.3

Vulnerability Description

A vulnerability in the way Cisco UCS Manager software handles SSH sessions could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper resource management for established SSH sessions. An attacker could exploit this vulnerability by opening a significant number of SSH sessions on an affected device. A successful exploit could allow the attacker to cause a crash and restart of internal Cisco UCS Manager software processes and a temporary loss of access to the Cisco UCS Manager CLI and web UI. Note: The attacker must have valid user credentials to authenticate to the affected device.

Related Vulnerabilities

CVE-2022-1385

MEDIUM

CVSS:4.6(Medium)

Mattermost 6.4.x and earlier fails to properly invalidate pending email invitations when the action is performed from the system console, which allows accidentally invited users to join the workspace ...

CWE-6642022

CVE-2024-45383

MEDIUM

CVSS:5.0(Medium)

A mishandling of IRP requests vulnerability exists in the HDAudBus_DMA interface of Microsoft High Definition Audio Bus Driver 10.0.19041.3636 (WinBuild.160101.0800). A specially crafted application c...

CWE-6642024

CVE-2020-3504

LOW

CVSS:3.3(Low)

A vulnerability in the local management (local-mgmt) CLI of Cisco UCS Manager Software could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected device. ...

CWE-6642020

CVE-2022-20748

MEDIUM

CVSS:5.3(Medium)

A vulnerability in the local malware analysis process of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on t...

CWE-6642022

CVE-2022-27512

MEDIUM

CVSS:5.3(Medium)

Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.

CWE-6642022

CVE-2020-1620

MEDIUM

CVSS:5.5(Medium)

A local, authenticated user with shell can obtain the hashed values of login passwords via configd streamer log. This issue affects all versions of Junos OS Evolved prior to 19.3R1.

CWE-6642020