Security News > 2020 > February > Critical Cisco ‘CDPwn’ Flaws Break Network Segmentation
Cisco is issuing patches for five critical vulnerabilities that have been discovered in Cisco Discovery Protocol, the info-sharing layer that maps all Cisco equipment on a network.
CDP is a Cisco proprietary Layer 2 network protocol that is used to discover information about locally attached Cisco equipment.
CDP aids in mapping the presence of other Cisco products in the network and is implemented in virtually all Cisco products - including switches, routers, IP phones and IP cameras.
A Cisco spokesperson told Threatpost that Cisco is not aware of any "Malicious uses" of the flaws in the wild.
After compromising a vulnerable Cisco device, an attacker could then send a maliciously crafted CDP packet to another Cisco device located inside the network.
News URL
https://threatpost.com/critical-cisco-cdpwn-flaws-network-segmentation/152546/
Related news
- Cisco Fixes Critical Privilege Escalation Flaw in Meeting Management (CVSS 9.9) (source)
- Cisco fixes ClamAV vulnerability with available PoC and critical Meeting Management flaw (source)
- Patch now: Cisco fixes critical 9.9-rated, make-me-admin bug in Meeting Management (source)
- Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc (source)
- Critical Cisco ISE bug can let attackers run commands as root (source)