Cisco today warned of attacks actively targeting the CVE-2020-3118 high severity vulnerability found to affect multiple carrier-grade routers that run the company’s Cisco IOS XR software. The vulnerability impacts third-party white box routers and the following Cisco products. Attackers could exploit the vulnerability by sending a malicious Cisco Discovery Protocol packet to devices running a vulnerable version of Cisco’s software version. The U.S. National Security Agency (NSA) also included the vulnerability among 25 security vulnerabilities currently targeted or exploited by Chinese state-sponsored threat actors.
Source: https://www.bleepingcomputer.com/news/security/cisco-warns-of-attacks-targeting-high-severity-router-vulnerability/