Advertisement
Top
image credit: Unsplash

Cisco Patches High-Severity Vulnerabilities in Business Switches

August 25, 2022

Via: Security Week
Category:

Cisco this week announced patches for two vulnerabilities impacting the NX-OS software that powers its Nexus-series business switches.

Impacting the OSPF version 3 (OSPFv3) feature of NX-OS, the first of these issues is tracked as CVE-2022-20823 and could be exploited remotely, without authentication, to cause a denial-of-service (DoS) condition.

The flaw exists due to incomplete input validation of specific OSPFv3 packets, allowing an attacker to send a malicious OSPFv3 link-state advertisement (LSA) to a vulnerable device in order to trigger the bug.

Read More on Security Week

RELATED PUBLICATIONS

Google fixed critical Chrome vulnerability CVE-2024-4058
OpenAI’s GPT-4 can exploit real vulnerabilities by reading security advisories
Unpatched Vulnerabilities: The Most Brutal Ransomware Attack Vector

Latest Publications

Chinese government website security is often worryingly bad, say Chinese researchers
Indonesia sneakily buys spyware, claims Amnesty International
97% of security leaders have increased SaaS security budgets
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!