The Latest in IT Security

Attackers are exploiting two zero-day flaws in Cisco enterprise-grade routers

01
Sep
2020
Attackers are exploiting two zero-day flaws in Cisco enterprise-grade routers

image credit: pexels

A technical support intervention has revealed two zero-day vulnerabilities in the OS running on Cisco enterprise-grade routers that attackers are trying to actively exploit.

Cisco plans to release software updates to plug these security holes, but in the meantime administrators are advised to implement one or all of the provided mitigations.

About the vulnerabilities

The two zero-day flaws – CVE-2020-3566 and CVE-2020-3569 – affect the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software, running on Cisco enterprise-grade routers for service providers, data centers, enterprises, and critical infrastructure.

Related posts:
  1. Cisco fixes critical flaws in data center and SD-WAN solutions
  2. Cisco Patches IPv6 Vulnerability in Carrier-Grade Router System
  3. Cisco issues new, complete fixes for critical flaw in enterprise security appliances
  4. Critical vulnerability opens Cisco switches to remote attack
  5. DHS’s CISA Warns of New Critical Infrastructure Ransomware Attack

Read More

Tags:  
Written by Feedproxy
0 Comments
Comments are closed.

Categories

THURSDAY, APRIL 18, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments