Blog | G5 Cyber Security

Cisco Patches Two High-Severity Bugs in its Small Business Switch Lineup

Vulnerabilities allow unauthenticated remote attackers to access sensitive device information and launch denial of service attacks against affected gear. Cisco said it was unaware of active exploitation of the vulnerabilities and software updates are available. The vulnerabilities include an information disclosure flaw (CVE-2019-15993) and a bug that creates conditions optimum for a DoS attack. The flaws are due to improper validation of requests sent to the web interface of Cisco s small business switches, which could allow an attacker to exploit this vulnerability.

Source: https://threatpost.com/cisco-patches-high-severity-bugs-in-switch-lineup/152392/

Exit mobile version