Security News > 2017 > March > 300+ Cisco switches affected by critical bug found in Vault 7 data dump (Help Net Security)
2017-03-20 14:48
While combing through WikiLeaks’ Vault 7 data dump, Cisco has unearthed a critical vulnerability affecting 300+ of its switches and one gateway that could be exploited to take over the devices. The vulnerability The flaw is present in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software. “The vulnerability is due to the combination of two factors: the failure to restrict the use of CMP-specific Telnet options only … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/8bzqK_wzDGc/
Related news
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing (source)
- Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems (source)
- Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418) (source)
- Cisco scores a perfect CVSS 10 with critical flaw in its wireless system (source)
- HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities (source)
- Major security audit of critical FreeBSD components now available (source)