Security News > 2019 > August > Critical holes plugged in Cisco 220 Series smart switches

Critical holes plugged in Cisco 220 Series smart switches
2019-08-07 07:38

Cisco has fixed three vulnerabilities in its Cisco 220 Series smart switches and is urging owners to upgrade their firmware as soon as possible. Among these are two critical flaws that could allow unauthenticated, remote attackers to compromise vulnerable devices. About the vulnerabilities Cisco 220 Series smart switches are generally used by small and midsize businesses. All the flaws affect the switches’ web management interface, which is enabled by default. CVE-2019-1912 is an authentication bypass … More → The post Critical holes plugged in Cisco 220 Series smart switches appeared first on Help Net Security.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/lwMAqTuvk1M/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2019-08-07 CVE-2019-1912 Incorrect Authorization vulnerability in Cisco products
A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an unauthenticated, remote attacker to upload arbitrary files.
network
low complexity
cisco CWE-863
critical
9.1

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Cisco 2046 21 1773 1669 288 3751