Security News > 2021 > February > Cisco fixes critical code execution bugs in SMB VPN routers
Cisco has addressed multiple pre-auth remote code execution vulnerabilities affecting several small business VPN routers and allowing attackers to execute arbitrary code as root on successfully exploited devices.
The security bugs with a severity rating of 9.8/10 were found in the web-based management interface of Cisco small business routers.
Cisco says that its Dual WAN Gigabit VPN Routers are not affected.
Luckily, even if you cannot immediately patch vulnerable routers, the Cisco Product Security Incident Response Team says that it isn't "Aware of any public announcements or malicious use of the vulnerabilities."
Cisco today has also addressed high severity vulnerabilities impacting other business routers and the IOS XR software.
Last month, Cisco has also patched several pre-auth RCE vulnerabilities affecting multiple SD-WAN products and the Cisco Smart Software Manager software.
News URL
Related news
- Quad7 botnet targets more SOHO and VPN routers, media servers (source)
- Quad7 Botnet Expands to Target SOHO Routers and VPN Appliances (source)
- D-Link fixes critical RCE, hardcoded password flaws in WiFi 6 routers (source)
- Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution (source)
- Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk (source)
- DrayTek fixed critical flaws in over 700,000 exposed routers (source)
- Critical Apache Avro SDK Flaw Allows Remote Code Execution in Java Applications (source)
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- Cisco fixes VPN DoS flaw discovered in password spray attacks (source)
- New Cisco ASA and FTD features block VPN brute-force password attacks (source)