Advertisement
Top
image credit: Prayitno / Flickr

Critical Flaw in Cisco Elastic Services Controller Allows Full System Takeover

May 8, 2019

Via: Threat Post
Category:

A critical vulnerability in the Cisco Elastic Services Controller could allow an unauthenticated, remote attacker to take full control of impacted systems – merely by sending a crafted request.

Cisco Elastic Services Controller is a virtual network functions manager, which enables businesses to automate the deployment and monitoring of functions running on their virtual machines. The authentication bypass vulnerability, CVE-2019-1867, has a CVSS score of 10 out of 10, making it a critical flaw.

Read More on Threat Post

RELATED PUBLICATIONS

API sprawl: navigating the web of connectivity and security challenges
NIST updates Cybersecurity Framework after a decade of lessons
Giant leak reveals Chinese infosec vendor I-Soon is one of Beijing’s cyber-attackers for hire

Latest Publications

AI set to play key role in future phishing attacks
U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity
5 Hard Truths About the State of Cloud Security 2024
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!