cisco: Indian cyber agency warns users of multiple bugs in Cisco products


New Delhi: The Indian Computer Emergency Response Team (CERT-In) which comes under the IT Ministry on Monday issued an advisory over three serious vulnerabilities in networking major Cisco products that could help hackers gain access, infiltrate into computer systems and steal data.

The vulnerabilities in products like routers and email/web manager could allow the attacker to gain unauthorised access, execute arbitrary commands and cause denial of service attack on an affected system, CERT-In said in its latest advisory.

The ‘Security Bypass Vulnerability’ exists in the external authentication functionality of Cisco Secure Email and Web Manager, formerly known as Cisco Security Management Appliance (SMA), and Cisco Email Security Appliance (ESA).

“An attacker could exploit this vulnerability by entering a specific input on the login page of the affected device,” the cyber agency said.

Another ‘Denial of Service Vulnerability’ exists in the web-based management interface of Cisco…

Source link

Leave a Reply