Hardcoded SSH Key in Cisco Policy Suite Lets Remote Hackers Gain Root Access

Status: Informational

Cisco Systems has released security updates to address vulnerabilities in multiple Cisco products that could be exploited by an attacker to log in as a root user and take control of vulnerable systems.

Tracked as CVE-2021-40119, the vulnerability has been rated 9.8 in severity out of a maximum of 10 on the CVSS scoring system and stems from a weakness in the SSH authentication mechanism of Cisco Policy Suite.

Revolt Recommends:
Login to your Cisco account to obtain the update