Cisco has advised enterprise users of its wireless virtual private network (VPN) and firewall routers to immediately install updates to patch a critical flaw that remote attackers can exploit to infiltrate a network.
The flaw lets hackers with any browser execute arbitrary code via the Web interface used for managing Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router.
The networking giant said, "The vulnerability is due to improper validation of user-supplied data in the Web-based management interface. An attacker could exploit this vulnerability by sending malicious HTTP requests to a targeted device."
Cisco rated the bug's severity 9.8 out of a possible 10 under the Common Vulnerability Scoring System.
View Full Article
Abstracts Copyright © 2019 SmithBucklin, Washington, DC, USA
No entries found