vulnerability

Cisco Catalyst SD-WAN: CVE-2021-1486: Cisco SD-WAN vManage HTTP Authentication User Enumeration Vulnerability

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

May 5, 2021

Added

Jun 25, 2024

Modified

Apr 1, 2026

Description

A vulnerability in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to enumerate user accounts. This vulnerability is due to the improper handling of HTTP headers. An attacker could exploit this vulnerability by sending authenticated requests to an affected system. A successful exploit could allow the attacker to compare the HTTP responses that are returned by the affected system to determine which accounts are valid user accounts.

Solution

cisco-catalyst-sdwan-update-latest

References

CVE-2021-1486
https://attackerkb.com/topics/CVE-2021-1486
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanage-enumeration-64eNnDKy
https://euvd.enisa.europa.eu/vulnerability/EUVD-2021-6953
CISCO-cisco-sa-vmanage-enumeration-64eNnDKy
CWE-203
EUVD-EUVD-2021-6953

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report