AceBreakingNews – This alert is intended for IT teams who manage router and networking switch configurations for organisations.
Ace Press News From Cutting Room Floor: Published: Oct.18: 2023: Australia Cyber Security ALERT News: TELEGRAM Ace Daily@acenewsviews News Link https://t.me/+PuI36tlDsM7GpOJe
Background / What has happened?
The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of reports of active exploitation of a previously unknown (“zero day”) vulnerability in the web user interface (UI) feature of Cisco IOS XE Software (CVE-2023-20198).
Exploitation of this vulnerability could allow a remote, unauthenticated user to create a highly privileged account on the vulnerable system, allowing them to take control of the system.
The ASD’s ACSC is not aware of any successful exploitation attempts against Australian organisations at this time.
Mitigation / How do I stay secure?
A patch is currently not available.
All Australian organisations using the web UI feature of Cisco IOS XE Software are strongly encouraged to follow the recommendations detailed in Cisco’s security advisory until a patch is made available:
Cisco reports active exploitation of this vulnerability and has published indicators of compromise to assist system owners in investigating for signs of malicious activity.
Assistance / Where can I go for help?
The ASD’s ACSC is monitoring the situation and is able to provide assistance and advice as required. Organisations or individuals that have been impacted or require assistance can contact us via 1300 CYBER1 (1300 292 371).
Editor says …Sterling Publishing & Media Service Agency is not responsible for the content of external site or from any reports, posts or links and thanks for following as always appreciate every like, reblog or retweet and comment thank you
@acenewsviews
You must be logged in to post a comment.