Thousands Of Cisco Equipment Are Affected When A Serious Defect Is Used By Hackers

The business cautioned that if this vulnerability is successfully exploited, an attacker would be able to establish an account on the vulnerable device with “privilege level 15” access, thereby giving them complete control of the compromised device and opening the door for any future unauthorised action.

Enterprise switches, wireless controllers, access points, and industrial routers are among the hardware running Cisco IOS XE.

Cisco has advised businesses to turn off the HTTP server capability on computers that are connected to the internet.

According to Censys’ data, the US, the Philippines, and Mexico are where the bulk of infected devices are found.

Smaller organizations and people who are more vulnerable are the main targets of this issue, according to security specialists.

According to Cisco, the new vulnerability was rated 10/critical under the Common Vulnerability Scoring System (CVSS).

“Successful exploitation would grant an attacker full administrator privileges, allowing them to effectively take full control of the affected router and allowing for possible subsequent unauthorized activity,” the firm added.

A sign of possibly malicious behavior related to this vulnerability is unexplained or newly formed users on devices, which organizations should watch for.