Cisco reports that over 300 of its products, including many popular switches using Cisco IOS, are affected by a critical security flaw that allows attackers to potentially execute privileged code remotely on affected devices. The vulnerability was discovered by Cisco researchers via the WikiLeaks Vault 7 CIA data dump. Cisco stated that they are working on software updates to fix the issue and that there are no known workarounds for the vulnerability at this time
For more information, and to see the list of affected products, see Cisco's security advisory: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170317-cmp
ACA Aponix Guidance
ACA Aponix recommends taking the following precautionary measures:
- All affected Cisco devices should be patched as promptly as possible.
- Disable Telnet to eliminate the possibility of exploitation.
- Enable configuration monitoring on all Cisco devices to receive alerts if an attacker attempts to reconfigure the device.
If you have any questions, please contact your ACA Aponix consultant or email us at firstname.lastname@example.org