Cisco has a zero-day vulnerability in its router software that’s being exploited in the wild. The bug affects all Cisco gear running its Internetwork Operating System (IOS) XR Software. The vulnerability has been rated “high” with a Common Vulnerability Scoring System score of 8.6 out of a maximum 10. The issue stems from an issue in the Distance Vector Multicast Routing Protocol (DVMRP) feature that makes it possible for an adversary to send specially crafted packets to the susceptible device.
Source: https://thehackernews.com/2020/09/cisco-issue-warning-over-ios-xr-zero.html