How severe is CVE-2021-1614?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2021-1614?

This is classified as CWE-126, which is a common weakness in software security.

CVE-2021-1614 - MEDIUM Severity | CVSS 5.3

Vulnerability Description

A vulnerability in the Multiprotocol Label Switching (MPLS) packet handling function of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to gain access to information stored in MPLS buffer memory. This vulnerability is due to insufficient handling of malformed MPLS packets that are processed by a device that is running Cisco SD-WAN Software. An attacker could exploit this vulnerability by sending a crafted MPLS packet to an affected device that is running Cisco SD-WAN Software or Cisco SD-WAN vManage Software. A successful exploit could allow the attacker to gain unauthorized access to sensitive information.

Related Vulnerabilities

CVE-2023-21720

MEDIUM

CVSS:5.3(Medium)

Microsoft Edge (Chromium-based) Tampering Vulnerability

CWE-1262023

CVE-2023-36801

MEDIUM

CVSS:5.3(Medium)

DHCP Server Service Information Disclosure Vulnerability

CWE-1262023

CVE-2023-38152

MEDIUM

CVSS:5.3(Medium)

DHCP Server Service Information Disclosure Vulnerability

CWE-1262023

CVE-2023-45919

MEDIUM

CVSS:5.3(Medium)

Mesa 23.0.4 was discovered to contain a buffer over-read in glXQueryServerString(). NOTE: this is disputed because there are no common situations in which users require uninterrupted operation with an...

CWE-1262023

CVE-2025-29956

MEDIUM

CVSS:5.4(Medium)

Buffer over-read in Windows SMB allows an authorized attacker to disclose information over a network.

CWE-1262025

CVE-2021-22552

MEDIUM

CVSS:5.5(Medium)

An untrusted memory read vulnerability in Asylo versions up to 0.6.1 allows an untrusted attacker to pass a syscall number in MessageReader that is then used by sysno() and can bypass validation. This...

CWE-1262021