Cisco has published multiple security advisories concerning critical flaws in Cisco Security Manager (CSM) A week after the networking equipment maker quietly released patches with version 4.22 of the platform. Code White researcher Florian Hauser (frycos) yesterday publicly disclosed proof-of-concept (PoC) code for as many as 12 security vulnerabilities affecting the web interface of CSM. The flaws were responsibly reported to Cisco’s Product Security Incident Response Team (PSIRT) three months ago, on July 13.
Source: https://thehackernews.com/2020/11/researcher-discloses-critical-rce-flaws.html