Security News > 2023 > May > Cisco squashes critical bugs in small biz switches
Cisco rolled out patches for four critical security vulnerabilities in several of its network switches for small businesses that can be exploited to remotely hijack the equipment.
The networking giant this week said in an advisory that organizations with service contracts that include regular software updates should get fixes for the security holes through their usual update channels.
Those with valid licenses from Cisco or third parties can get them through maintenance upgrades.
According to Cisco's Product Security Incident Response Team software for the vendor's Catalyst switches.
"An attacker could exploit this vulnerability by rebooting the switch into ROMMON and entering specific commands through the console."
The flaw affected switches in seven Catalyst families: the 3600, 3800, and the 9200 through 9600 series.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/05/18/cisco_patches_small_biz_switches/
Related news
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems (source)
- Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418) (source)
- Cisco scores a perfect CVSS 10 with critical flaw in its wireless system (source)