Cisco IOS XE Software Remote Code Execution Vulnerability

Last Update Date: 30 Jun 2020 10:54 Release Date: 30 Jun 2020 3927 Views

RISK: High Risk

TYPE: Clients - Productivity Products

A vulnerability was identified in Cisco products, a remote attacker could exploit this vulnerability to trigger denial of service and remote code execution on the targeted system.

Notes: Exploit code is now publicly available

Impact

Denial of Service
Remote Code Execution

System / Technologies affected

Cisco IOS XE

Please refer to the link below for detail:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-telnetd-EFJrEzPx

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

Cisco IOS XE

Vulnerability Identifier

CVE-2020-10188

Source

Cisco