Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices

Cisco has warned of a new zero-day flaw in IOS XE that has been actively exploited by an unknown threat actor to deploy a malicious Lua-based implant on susceptible devices.
Tracked as CVE-2023-20273 (CVSS score: 7.2), the issue relates to a privilege escalation flaw in the web UI feature and is said to have been used alongside CVE-2023-20198 as part of an exploit chain.
"The attacker first

actively exploited actor backdoor cisco cve cvss deploy devices escalation exploited flaw implant ios ios xe issue lua malicious privilege privilege escalation privilege escalation flaw score the web threat threat actor web zero-day zero-day flaw