Cybersecurity Alert: Cisco Reports "Critical" Security Vulnerability in 300+ Products

March 21, 2017

Threat Summary

Cisco reports that over 300 of its products, including many popular switches using Cisco IOS, are affected by a critical security flaw that allows attackers to potentially execute privileged code remotely on affected devices. The vulnerability was discovered by Cisco researchers via the WikiLeaks Vault 7 CIA data dump. Cisco stated that they are working on software updates to fix the issue and that there are no known workarounds for the vulnerability at this time

For more information, and to see the list of affected products, see Cisco's security advisory: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170317-cmp

ACA Aponix Guidance

ACA Aponix recommends taking the following precautionary measures:

  • All affected Cisco devices should be patched as promptly as possible.
  • Disable Telnet to eliminate the possibility of exploitation. 
  • Enable configuration monitoring on all Cisco devices to receive alerts if an attacker attempts to reconfigure the device. 

If you have any questions, please contact your ACA Aponix consultant or email us at info@acaaponix.com