Saturday, 28 January 2023

Cisco warned of critical vulnerability in EoL routers

Cisco warned customers of a critical authentication bypass vulnerability with public exploit code affecting multiple end-of-life (EoL) VPN routers.

The security flaw (CVE-2023-20025) was found in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, and RV082 routers. Successful exploitation allows to gain root access. Cisco also warned of a high-severity bug (CVE-2023-20026) in the web-based management interface of the same routers, exploitation of which could allow an authenticated, remote attacker to execute arbitrary commands on an affected device.

Cisco noted that it "has not and will not release software updates that address this vulnerabilities" and said that there "are no workarounds that address these vulnerabilities," and that users can mitigate the vulnerabilities by disabling the remote management and blocking access to ports 443 and 60443.

More information on vulnerabilities is available in Cisco security advisory - cisco.com

24 January 2023

-
33