Cisco Releases Security Updates
Cisco has released security updates to address vulnerabilities in multiple Cisco products. The vulnerability is due to improper validation of user-supplied data in the web-based management interface. An attacker could exploit this vulnerability by sending malicious HTTP requests to a targeted device. A successful exploit could allow the attacker to execute arbitrary code on the underlying operating system of the affected device as a high-privilege user.
Impact: A remote attacker could exploit this vulnerability to take control of an affected system.
Mitigation: Updates are available. Please see the references or vendor advisory for more information.
18 Nov 2020 - Security Advisories & Alerts