Cisco addressed high-severity flaws in Small Business Switches that can be exploited to access sensitive device data and to trigger a DoS condition. Both issues could be exploited by remote, unauthenticated attackers, they were reported by Ken Pyle of DFDR Consulting. Cisco also addressed a flaw in the Cisco Webex video conferencing platform (CVE-2020-3142) that could be used to access password-protected video conference meetings bypassing any authentication. Cisco is not aware of any attacks exploiting the vulnerabilities in the wild.”]
Source: https://securityaffairs.co/wordpress/97047/security/cisco-small-business-routers-flaws-2.html