CVE-2021-27862— L2 network filtering bypass using stacked VLAN0 and LLC/SNAP headers with an invalid length during Ethernet to Wifi frame translation
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-27862
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
L2 network filtering bypass using stacked VLAN0 and LLC/SNAP headers with an invalid length during Ethernet to Wifi frame translation
Source: NVD (National Vulnerability Database)
Vulnerability Description
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length and Ethernet to Wifi frame conversion (and optionally VLAN0 headers).
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
长度参数不一致性处理不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Cisco产品安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco NX-OS Software等都是美国思科(Cisco)公司的产品。Cisco NX-OS Software是一套交换机使用的数据中心级操作系统软件。Cisco IOS是一套为其网络设备开发的操作系统。Cisco IOS XE Software是一个操作系统。 Cisco IOS Software - Switches、Cisco IOS XE Software - Switches、Cisco IOS XE Software - Routers、Cisco IOS XR Software、C
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| IEEE | 802.2 | 802.2h-1997 ~ 802.2h-1997 | - | |
| IETF | draft-ietf-v6ops-ra-guard-08 | 08 ~ 08 | - |
II. Public POCs for CVE-2021-27862
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-27862
请登录查看更多情报信息。
Same Patch Batch · IEEE · 2022-09-27 · 3 CVEs total
| CVE-2021-27853 | L2 network filtering can be bypassed using stacked VLAN0 and LLC/SNAP headers | |
| CVE-2021-27861 | L2 network filtering bypass using stacked VLAN0 and LLC/SNAP headers with invalid lengths |
IV. Related Vulnerabilities
Same vendor: IEEE
- CVE-2021-27861
L2 network filtering bypass using stacked VLAN0 and LLC/SNAP - CVE-2021-27853
L2 network filtering can be bypassed using stacked VLAN0 and - CVE-2017-13091
The P1735 IEEE standard describes flawed methods for encrypt - CVE-2017-13092
The P1735 IEEE standard describes flawed methods for encrypt - CVE-2017-13093
The P1735 IEEE standard describes flawed methods for encrypt
Same weakness: CWE-130
- CVE-2026-5766
Potential denial-of-service vulnerability in ASGI requests v - CVE-2026-33846
Gnutls: gnutls: denial of service via heap buffer overflow i - CVE-2026-3868
Moxa EDR-8010 Series和Moxa EDR-G9010 Series 安全漏洞 - CVE-2026-5265
Ovn: ovn: heap over-read in icmp error response generation - - CVE-2026-5367
Ovn: ovn: information disclosure via crafted dhcpv6 packets
V. Comments for CVE-2021-27862
No comments yet