Top

Cisco Patches Two Critical RCE Bugs in IOS XE Software

March 29, 2018

Category:

Three critical vulnerabilities were patched by Cisco Systems on Wednesday, each tied to the company’s widely used internetworking operating system IOS XE. Two of the bugs are remote code execution vulnerabilities that could allow an attacker to take control over affected systems.

The critical bug disclosures were three of 22 vulnerabilities disclosed by Cisco on Wednesday, part of the company’s semiannual IOS and IOS XE software security advisory bundled publication. While three maintained a security impact rating of critical, 19 had a rating of high.

The first of the critical flaws (CVE-2018-0151) identified by Cisco is an “IOS and IOS XE Software Quality of Service Remote Code Execution Vulnerability.”

Read More on Threat Post