Security News > 2021 > August > Cisco fixes critical, high severity pre-auth flaws in VPN routers
Cisco has addressed pre-auth security vulnerabilities impacting multiple Small Business VPN routers and allowing remote attackers to trigger a denial of service condition or execute commands and arbitrary code on vulnerable devices.
Luckily, as the company explains, the remote management feature is disabled by default on all affected VPN router models.
"The web-based management interface for these devices is available through local LAN connections by default and cannot be disabled there," Cisco says.
In August 2020, Cisco warned of actively exploited zero-day bugs in carrier-grade IOS XR routers with multicast routing enabled.
One month later, in October 2020, Cisco again warned of attacks actively targeting a separate high severity vulnerability impacting the IOS XR Network OS deployed on the same router models.
In July 2020, Cisco fixed another actively exploited ASA/FTD firewall bug and a pre-auth critical remote code execution flaw that could lead to full device takeover on vulnerable devices.
News URL
Related news
- Unsecured Tunneling Protocols Expose 4.2 Million Hosts, Including VPNs and Routers (source)
- Cisco Fixes Critical Privilege Escalation Flaw in Meeting Management (CVSS 9.9) (source)
- Cisco fixes ClamAV vulnerability with available PoC and critical Meeting Management flaw (source)
- Patch now: Cisco fixes critical 9.9-rated, make-me-admin bug in Meeting Management (source)
- Netgear warns users to patch critical WiFi router vulnerabilities (source)
- Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc (source)
- Critical Cisco ISE bug can let attackers run commands as root (source)
- Chinese hackers breach more US telecoms via unpatched Cisco routers (source)
- Juniper patches critical auth bypass in Session Smart routers (source)