Security News > 2020 > August > Cisco Critical Flaw Patched in WAN Software Solution
Cisco patched a critical flaw in its wide area network software solution for enterprises, which if exploited could give remote, unauthenticated attackers administrator privileges.
The flaw exists in Cisco Virtual Wide Area Application Services, which is software that Cisco describes as a "WAN optimization solution." It helps manage business applications that are being leveraged in virtual private cloud infrastructure.
These appliances are also used to deploy the Cisco Enterprise NFV Infrastructure Software, a software platform that implements full lifecycle management from the central orchestrator and controller for virtualized services.
"Multiple vulnerabilities in the Cisco Discovery Protocol implementation for Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to execute code remotely or cause a reload of an affected IP camera," according to Cisco.
A high-severity flaw found and fixed in Cisco Smart Software Manager On-Prem could allow an authenticated, remote attacker to elevate privileges and execute commands with higher privileges.
News URL
https://threatpost.com/cisco-critical-flaw-patched-in-wan-software-solution/158485/
Related news
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems (source)
- Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418) (source)
- Cisco scores a perfect CVSS 10 with critical flaw in its wireless system (source)