CVE-2021-34744

Cisco Business 220 Series Smart Switches Static Key and Password Vulnerabilities

CVSS 4.9 MEDIUMEPSS 0.7%CWE-540

Multiple vulnerabilities in Cisco Business 220 Series Smart Switches firmware could allow an attacker with Administrator privileges to access sensitive login credentials or reconfigure the passwords on the user account. For more information about these vulnerabilities, see the Details section of this advisory.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Produtos afetados

Cisco · Cisco Small Business 220 Series Smart Plus Switches

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-hardcoded-cred-MJCEXvX