Source |
The Hacker News |
Identifiant |
4726596 |
Date de publication |
2022-05-20 20:06:58 (vue: 2022-05-21 04:07:18) |
Titre |
Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild |
Texte |
Cisco on Friday rolled out fixes for a medium-severity vulnerability affecting IOS XR Software that it said has been exploited in real-world attacks.
Tracked as CVE-2022-20821 (CVSS score: 6.5), the issue relates to an open port vulnerability that could be abused by an unauthenticated, remote attacker to connect to a Redis instance and achieve code execution.
"A successful exploit could allow |
Envoyé |
Oui |
Condensat |
2022 20821 abused achieve affecting allow attacker attacks been cisco code connect could cve cvss day execution exploit exploited fixes friday has instance ios issue issues medium new open out patch port real redis relates remote rolled said score: severity software successful tracked unauthenticated vulnerability wild world zero |
Tags |
Vulnerability
|
Stories |
|
Notes |
|
Move |
|