all InfoSec news
Active exploitation of Cisco IOS XE Software Web Management User Interface vulnerability
Oct. 16, 2023, 3:40 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
Overview
- Cisco has identified active exploitation of a previously unknown vulnerability in the Web User Interface (Web UI) feature of Cisco IOS XE software (CVE-2023-20198) when exposed to the internet or untrusted networks. This affects both physical and virtual devices running Cisco IOS XE software that also have the HTTP or HTTPS Server feature enabled.
- Successful exploitation of this vulnerability allows an attacker to create an account on the affected device with privilege level 15 access, effectively granting them full …
cisco cisco ios cisco ios xe cve devices exploitation exposed feature interface internet ios management networks physical running software the web untrusted user interface virtual vulnerability web
More from malware.news / Malware Analysis, News and Indicators - Latest topics
2024-05-09: GootLoader activity
1 day, 6 hours ago |
malware.news
F5 Fixes Critical RCE Bugs in BIG-IP Next Central Manager
1 day, 9 hours ago |
malware.news
Google patches fifth Chrome zero-day of 2024
1 day, 9 hours ago |
malware.news
Jobs in InfoSec / Cybersecurity
G230ISSO2 - Mid Level Information System Security Officer - Cleared
@ NiSUS Technologies | Annapolis Junction, Maryland, United States
Security Incident Response Engineer
@ Oracle | JALISCO, Mexico
Security Compliance Specialist
@ Cloudflare, Inc. | Hybrid or Remote
Senior Security DevOps
@ SAP | Sofia, BG, 1407
Senior Cyber Security Engineer
@ Node.Digital | Dulles, Virginia, United States
Manager, Data Insights and Forensics
@ Kroll | New York City, United States