CVE-2021-1251 (CNNVD-202104-435)
中文标题:
Cisco Link Layer Discovery Protocol 缓冲区错误漏洞
英文标题:
Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities
漏洞描述
中文描述:
Cisco Link Layer Discovery Protocol是美国思科(Cisco)公司的一个路由器。 Cisco Link Layer Discovery Protocol 存在缓冲区错误漏洞,攻击者可利用该漏洞可以执行任意代码,或导致受影响的路由器泄漏系统内存或重新加载。
英文描述:
Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary code or cause an affected router to leak system memory or reload. A memory leak or device reload would cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Note: LLDP is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| Cisco | Cisco Small Business RV Series Router Firmware | n/a | - | - |
cpe:2.3:a:cisco:cisco_small_business_rv_series_router_firmware:n_a:*:*:*:*:*:*:*
|
| cisco | rv132w_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv132w_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv132w_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv132w_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv134w_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv134w_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv134w_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv134w_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv160_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv160_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv160_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv160_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv160w_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv160w_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv160w_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv160w_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv260_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv260_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv260_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv260_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv260p_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv260p_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv260p_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv260p_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv260w_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv260w_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv260w_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv260w_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv340_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv340_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv340_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv340_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv340w_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv340w_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv340w_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv340w_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv345_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv345_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv345_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv345_firmware:1.0.3.20:*:*:*:*:*:*:*
|
| cisco | rv345p_firmware | 1.0.1.14 | - | - |
cpe:2.3:o:cisco:rv345p_firmware:1.0.1.14:*:*:*:*:*:*:*
|
| cisco | rv345p_firmware | 1.0.3.20 | - | - |
cpe:2.3:o:cisco:rv345p_firmware:1.0.3.20:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
CVSS评分详情
3.1 (cna)
HIGHCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2021-1251 |
2025-11-11 15:20:45 | 2025-11-11 07:36:33 |
| NVD | nvd_CVE-2021-1251 |
2025-11-11 14:57:35 | 2025-11-11 07:44:55 |
| CNNVD | cnnvd_CNNVD-202104-435 |
2025-11-11 15:10:36 | 2025-11-11 07:56:42 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 缓冲区错误
- cnnvd_id: 未提取 -> CNNVD-202104-435
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- affected_products_count: 1 -> 23
- data_sources: ['cve'] -> ['cve', 'nvd']