CVE-2021-34741 - OpenCVE

A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device. This vulnerability is due to insufficient input validation of incoming emails. An attacker could exploit this vulnerability by sending a crafted email through Cisco ESA. A successful exploit could allow the attacker to exhaust all the available CPU resources on an affected device for an extended period of time, preventing other emails from being processed and resulting in a DoS condition.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	M390x M390 M380 M170 Asyncos M690 S395 M680 S195 M690x S695 M190

Configuration 1 [-]

AND

OR	cpe:2.3:o:cisco:asyncos::::::::
	cpe:2.3:o:cisco:asyncos:13.5.3-010:::::::*
	cpe:2.3:o:cisco:asyncos:13.7.0-093:::::::*

OR	cpe:2.3:h:cisco:m170:-:::::::*
	cpe:2.3:h:cisco:m190:-:::::::*
	cpe:2.3:h:cisco:m380:-:::::::*
	cpe:2.3:h:cisco:m390:-:::::::*
	cpe:2.3:h:cisco:m390x:-:::::::*
	cpe:2.3:h:cisco:m680:-:::::::*
	cpe:2.3:h:cisco:m690:-:::::::*
	cpe:2.3:h:cisco:m690x:-:::::::*
	cpe:2.3:h:cisco:s195:-:::::::*
	cpe:2.3:h:cisco:s395:-:::::::*
	cpe:2.3:h:cisco:s695:-:::::::*

References

Link	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-dos-JOm9ETfO	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: cisco

Published: 2021-11-03T00:00:00

Updated: 2021-11-04T15:40:17

Reserved: 2021-06-15T00:00:00

Link: CVE-2021-34741

JSON object: View

NVD Information

Status : Modified

Published: 2021-11-04T16:15:08.660

Modified: 2023-11-07T03:36:16.467

Link: CVE-2021-34741

JSON object: View

Redhat Information

No data.

CWE

CWE-770

{"containers": {"cna": {"affected": [{"product": "Cisco Email Security Appliance (ESA) ", "vendor": "Cisco", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2021-11-03T00:00:00", "descriptions": [{"lang": "en", "value": "A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device. This vulnerability is due to insufficient input validation of incoming emails. An attacker could exploit this vulnerability by sending a crafted email through Cisco ESA. A successful exploit could allow the attacker to exhaust all the available CPU resources on an affected device for an extended period of time, preventing other emails from being processed and resulting in a DoS condition."}], "exploits": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. "}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-770", "description": "CWE-770", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-11-04T15:40:17", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20211103 Cisco Email Security Appliance Denial of Service Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-dos-JOm9ETfO"}], "source": {"advisory": "cisco-sa-esa-dos-JOm9ETfO", "defect": [["CSCvy59938"]], "discovery": "INTERNAL"}, "title": "Cisco Email Security Appliance Denial of Service Vulnerability", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "DATE_PUBLIC": "2021-11-03T16:00:00", "ID": "CVE-2021-34741", "STATE": "PUBLIC", "TITLE": "Cisco Email Security Appliance Denial of Service Vulnerability"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Cisco Email Security Appliance (ESA) ", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "Cisco"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device. This vulnerability is due to insufficient input validation of incoming emails. An attacker could exploit this vulnerability by sending a crafted email through Cisco ESA. A successful exploit could allow the attacker to exhaust all the available CPU resources on an affected device for an extended period of time, preventing other emails from being processed and resulting in a DoS condition."}]}, "exploit": [{"lang": "en", "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. "}], "impact": {"cvss": {"baseScore": "7.5", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H ", "version": "3.0"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-770"}]}]}, "references": {"reference_data": [{"name": "20211103 Cisco Email Security Appliance Denial of Service Vulnerability", "refsource": "CISCO", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-dos-JOm9ETfO"}]}, "source": {"advisory": "cisco-sa-esa-dos-JOm9ETfO", "defect": [["CSCvy59938"]], "discovery": "INTERNAL"}}}}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2021-34741", "datePublished": "2021-11-03T00:00:00", "dateReserved": "2021-06-15T00:00:00", "dateUpdated": "2021-11-04T15:40:17", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:asyncos:*:*:*:*:*:*:*:*", "matchCriteriaId": "415C4EC7-44E1-4C07-85F0-665A186237EC", "versionEndExcluding": "13.0.4", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:asyncos:13.5.3-010:*:*:*:*:*:*:*", "matchCriteriaId": "E2CCDF88-877D-4CB0-B7BD-24D317FA6F16", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:asyncos:13.7.0-093:*:*:*:*:*:*:*", "matchCriteriaId": "3E94354C-6D93-4136-A4B6-5F926E02CA12", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:m170:-:*:*:*:*:*:*:*", "matchCriteriaId": "1BD3B1B3-3AFD-4B4A-9FCC-F2EEFA497032", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:m190:-:*:*:*:*:*:*:*", "matchCriteriaId": "A56CF47B-72C9-4590-89B0-59D43CA65894", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:m380:-:*:*:*:*:*:*:*", "matchCriteriaId": "81DBE5E7-524E-458C-BA56-AA806A55ACAE", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:m390:-:*:*:*:*:*:*:*", "matchCriteriaId": "5DFD07C1-F2A7-4DCE-8269-C8B3D2DE1C22", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:m390x:-:*:*:*:*:*:*:*", "matchCriteriaId": "9107B3CD-A607-4C11-ACAC-ACE66DDA51F8", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:m680:-:*:*:*:*:*:*:*", "matchCriteriaId": "86AFDB92-73A0-4FF1-976E-0CD9D342A712", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:m690:-:*:*:*:*:*:*:*", "matchCriteriaId": "2BA39FE7-9CDA-41D3-B31D-33F9DB2FB0B0", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:m690x:-:*:*:*:*:*:*:*", "matchCriteriaId": "E68E58E5-00AB-41BB-85C0-6D65359A4DA3", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:s195:-:*:*:*:*:*:*:*", "matchCriteriaId": "9797CD28-48A3-45BD-BF68-F0DF6F5A5579", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:s395:-:*:*:*:*:*:*:*", "matchCriteriaId": "C6D20279-8176-449A-AF4C-E2C90F370B30", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:s695:-:*:*:*:*:*:*:*", "matchCriteriaId": "D9408ADA-7A8F-4528-8236-65713CF642D5", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the email scanning algorithm of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to perform a denial of service (DoS) attack against an affected device. This vulnerability is due to insufficient input validation of incoming emails. An attacker could exploit this vulnerability by sending a crafted email through Cisco ESA. A successful exploit could allow the attacker to exhaust all the available CPU resources on an affected device for an extended period of time, preventing other emails from being processed and resulting in a DoS condition."}, {"lang": "es", "value": "Una vulnerabilidad en el algoritmo de an\u00e1lisis del correo electr\u00f3nico del software Cisco AsyncOS para Cisco Email Security Appliance (ESA) podr\u00eda permitir a un atacante remoto no autenticado llevar a cabo un ataque de denegaci\u00f3n de servicio (DoS) contra un dispositivo afectado. Esta vulnerabilidad es debido a que la comprobaci\u00f3n de entrada de los correos electr\u00f3nicos entrantes es insuficiente. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de un correo electr\u00f3nico dise\u00f1ado mediante Cisco ESA. Una explotaci\u00f3n con \u00e9xito podr\u00eda permitir al atacante agotar todos los recursos de CPU disponibles en un dispositivo afectado durante un per\u00edodo prolongado de tiempo, impidiendo que otros correos electr\u00f3nicos sean procesados y dando lugar a una condici\u00f3n de DoS"}], "id": "CVE-2021-34741", "lastModified": "2023-11-07T03:36:16.467", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2021-11-04T16:15:08.660", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-dos-JOm9ETfO"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-770"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-770"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}