News

CSO Online14d
Cisco patches max-severity flaw allowing arbitrary command execution
The bug can allow unauthorized, remote attackers to upload arbitrary files on devices running buggy IOS XE Software instances ...
Computing3y
Cisco fixes three critical bugs in IOS XE software
The most severe of these issues is CVE-2021-34770, a remote code execution ... of the Cisco IOS XE Software. A successful attack would enable an authenticated, remote actor to 'install, manipulate ...
Threat Post5y
High-Severity Cisco Flaw in IOS XE Enables Device Takeover
Cisco has patched a high-severity vulnerability in its software for routers and switches, which could enable a remote attacker to reconfigure or execute commands on impacted devices. IOS XE ...
Bleeping Computer15d
Cisco fixes max severity IOS XE flaw letting attackers hijack devices
Cisco has fixed a maximum severity flaw in IOS XE Software for Wireless LAN Controllers by a hard-coded JSON Web Token (JWT) that allows an unauthenticated remote attacker to take over devices.
CRN1y
Cisco IOS XE Devices Have Been ‘Widely Exploited:’ Researcher
The critical vulnerability “appears to have been widely exploited to install implants on Cisco IOS XE systems,” Baines ... escalation of privileges by a remote user without authentication ...
CRN1y
Cisco IOS XE Hack: Researchers Find Another ‘Sharp Increase’ In Affected Devices
IOS XE is a widely used Cisco networking software ... IOS XE vulnerability. “Attackers have already used this vulnerability to exploit tens of thousands of devices to gain access and install ...
Computing1y
Cisco warns of actively exploited zero-day in IOS XE software
Cisco has disclosed a critical zero-day vulnerability in its IOS XE software that is being actively ... and could allow an unauthenticated remote attacker to create a privileged account on ...