Security News > 2019 > August > Critical holes plugged in Cisco 220 Series smart switches
2019-08-07 07:38
Cisco has fixed three vulnerabilities in its Cisco 220 Series smart switches and is urging owners to upgrade their firmware as soon as possible. Among these are two critical flaws that could allow unauthenticated, remote attackers to compromise vulnerable devices. About the vulnerabilities Cisco 220 Series smart switches are generally used by small and midsize businesses. All the flaws affect the switches’ web management interface, which is enabled by default. CVE-2019-1912 is an authentication bypass … More → The post Critical holes plugged in Cisco 220 Series smart switches appeared first on Help Net Security.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/lwMAqTuvk1M/
Related news
- Critical Cisco Smart Licensing Utility flaws now exploited in attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- Juniper patches critical auth bypass in Session Smart routers (source)
- Attackers are leveraging Cisco Smart Licensing Utility static admin credentials (CVE-2024-20439) (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-07 | CVE-2019-1912 | Incorrect Authorization vulnerability in Cisco products A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an unauthenticated, remote attacker to upload arbitrary files. | 9.1 |