The flaws affect a key tool for managing Cisco s network platform and switches. The flaws, patched on Jan. 3, could allow an unauthenticated, remote attacker to execute arbitrary actions with administrative privileges on targeted devices. The security researcher who initially discovered the flaws, Steven Seeley, released public PoC exploits for the flaws this week. With the PoC exploit code now available, Cisco is urging customers to update the software updates patching the vulnerabilities earlier this month, which were updated on Wednesday.
Source: https://threatpost.com/cisco-dcnm-flaw-exploit/151949/