Cisco devices running certain releases of IOS are vulnerable to a remote code execution vulnerability due to insecure handling of input. An attacker could exploit this vulnerability by sending a crafted packet to an affected device. An exploit could allow the attacker to execute arbitrary code on the affected device or cause the device to crash and possibly be taken over. Cisco has released software updates to correct this issue. Was ZDI-CAN-18234. Cisco devices running certain releases of IOS are vulnerable to a remote code execution vulnerability due to insecure handling of input. An attacker could exploit this vulnerability by sending a crafted packet to an affected device. An exploit could allow the attacker to execute arbitrary code on the affected device or cause the device to crash and possibly be taken over. Cisco has released software updates to correct this issue. Was ZDI-CAN-18234. Cisco devices running certain releases of IOS are vulnerable to a remote code execution vulnerability due to insecure handling of input. An attacker could exploit this vulnerability by sending a crafted packet to an affected device. An exploit could allow the attacker to execute arbitrary code on the affected device or cause the device to crash and possibly be taken over. Cisco has released software updates to correct this issue. Was ZDI-CAN-18234
What is Cisco IOS Software?
Cisco IOS Software is the operating system for Cisco's routers and switches. The CCOIOS software is also used on some of the company's wireless products, specifically its Wi-Fi systems. The software was designed to provide users with a common platform for managing their networks of devices and allows them to configure settings via wizards or direct command-line input.
Vulnerable Products
Cisco devices running certain releases of IOS are vulnerable to a remote code execution vulnerability due to insecure handling of input. An attacker could exploit this vulnerability by sending a crafted packet to an affected device. An exploit could allow the attacker to execute arbitrary code on the affected device or cause the device to crash and possibly be taken over. Cisco has released software updates to correct this issue. Was ZDI-CAN-18234.
Summary of Cisco IOS Software vulnerabilities
Cisco devices running certain releases of IOS are vulnerable to a remote code execution vulnerability due to insecure handling of input. An attacker could exploit this vulnerability by sending a crafted packet to an affected device. An exploit could allow the attacker to execute arbitrary code on the affected device or cause the device to crash and possibly be taken over. Cisco has released software updates to correct this issue. Was ZDI-CAN-18234
Summary of Cisco devices known to be vulnerable
Cisco devices running IOS versions 12.2(55) and 12.2(54) are vulnerable to a remote code execution vulnerability due to insecure handling of input. Cisco has released software updates to correct this issue. Was ZDI-CAN-18234.
Timeline
Published on: 09/15/2022 16:15:00 UTC
Last modified on: 09/17/2022 03:41:00 UTC