Cisco scores a perfect CVSS 10 with critical flaw in its wireless system

November 7, 2024 at 07:02AM Cisco has issued an alert about a serious vulnerability (CVE-2024-20418) affecting its Ultra-Reliable Wireless Backhaul systems. The flaw allows unauthorized remote access to admin-level control and potential exploitation. Affected models include Catalyst IW9165D/E and IW9167E. Immediate patching is required, with a CVSS score of 10.0. **Meeting Takeaways on Cisco Critical … Read more

Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems

November 7, 2024 at 03:15AM Cisco has issued security updates to fix a critical vulnerability (CVE-2024-20418) in Ultra-Reliable Wireless Backhaul Access Points, allowing remote attackers to execute commands with elevated privileges. Affected devices need to update to software version 17.15.1, as earlier versions remain exposed but no active exploits have been reported. ### Meeting Takeaways … Read more

Cisco bug lets hackers run commands as root on UWRB access points

November 6, 2024 at 02:38PM Cisco has resolved a critical vulnerability (CVE-2024-20418) in its Ultra-Reliable Wireless Backhaul access points, allowing unauthorized command execution with root privileges via a web interface. The flaw affects certain Catalyst access points with vulnerable software. Cisco’s security teams found no evidence of exploitation so far. ### Meeting Notes Takeaways: 1. … Read more