Vulnerability in Cisco industrial appliances is a potential nightmare (CVE-2023-20076)

Cisco has released patches for a high-severity vulnerability (CVE-2023-20076) found in some of its industrial routers, gateways and enterprise wireless access points, which may allow attackers to insert malicious code that can’t be deleted by simply rebooting the device or updating its firmware. “In this case, the command injection bypasses mitigations Cisco has in place to ensure vulnerabilities do not persist in a system. Side-stepping this security measure means that if an attacker exploits this … More →

The post …

access access point access points attackers case cisco code command command injection cve data center device don't miss enterprise firmware gateway high hot stuff industrial injection malicious may measure mitigations patches router routers security security update severity supply chain attacks system trellix vulnerabilities vulnerability wireless