Cisco won’t fix router flaws even though PoC exploit is available (CVE-2023-20025, CVE-2023-20026)

Cisco has acknowledged one critical (CVE-2023-20025) and two medium-severity (CVE-2023-20026, CVE-2023-20045) vulnerabilities affecting some of its Small Business series of routers, but won’t be fixing them as the devices “have entered the end-of-life process.” Proof-of-concept exploit code for CVE-2023-20025 and CVE-2023-20026 is available online, but there is currently no indication of any of these flaws being exploited by attackers. About the vulnerabilities CVE-2023-20025 is an authentication bypass vulnerability in the web-based management interface of Cisco … More → The post Cisco won’t fix router flaws even though PoC exploit is available (CVE-2023-20025, CVE-2023-20026) appeared first on Help Net Security.
http://news.poseidon-us.com/SgmDmC

Cisco won’t fix router flaws even though PoC exploit is available (CVE-2023-20025, CVE-2023-20026)

Like this:

Related

More Posts

Exploring the Depths of SolarMarker's Multi-tiered Infrastructure

Only one-third of firms deploy safeguards against generative AI threats, report finds

FBI working towards nabbing Scattered Spider hackers

VRA NSW beefs up radio network, adding LTE and satellite backhaul

NAB makes 'secure by design' the centrepiece of security strategy

DNS Suffixes on Windows, (Sun, May 12th)

Week in review: Veeam fixes RCE flaw in backup management platform, Patch Tuesday forecast

AI and human pilots were ‘roughly even’ during latest tests

Army CIO Leo Garciga continues his march to revamp technology policy

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2024-4671)

Share this:

Like this:

Related

More Posts