Security News > 2017 > May > Cisco patches leaked 0-day in 300+ of its switches (Help Net Security)

Cisco patches leaked 0-day in 300+ of its switches (Help Net Security)
2017-05-10 15:33

Cisco has plugged a critical security hole in over 300 of its switches, and is urging users to apply the patches as soon as possible because an exploit for it has been available for a month now. The vulnerability (CVE-2017-3881) “A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely … More →


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/60sW87ao6Vo/

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2017-03-17 CVE-2017-3881 Improper Input Validation vulnerability in Cisco IOS and IOS XE
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.
network
low complexity
cisco CWE-20
critical
 10.0
10

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Cisco 4448 231 3066 1825 609 5731