Scribd Logo
Upload

Welcome to Scribd!

  • Cisco Warns of Attacks Targeting CVE-2020-3118 Vulnerability

    Uploaded by

    Adrian
    6 views4 pages

    Original Title

    cisco-warns-of-attacks-targeting-cve-

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    6 views4 pages

    Cisco Warns of Attacks Targeting CVE-2020-3118 Vulnerability

    Uploaded by

    Adrian

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    Cisco warns of Attacks targeting CVE-2020-3118 Vulnerability | SecureReading Page 1 of 4

    Home News Topics Resources Dashboard Expert Corner

    Public Spotlight Training SR Info

    HOT NEWS Search … Search RECENT


    POSTS
    Link
    Previews
    Cisco warns of Attacks Link
    in targeting CVE-2020-3118 Previews
    in
    Messaging
    Apps Vulnerability Messaging
    + Apps
    inflicts
    Privacy
     22 OCTOBER 20 + inflicts
    Risks; Privacy
    Expert Risks;
    Warns Expert
    Warns
    WastedLocker
    Ransomware WastedLocker
    hits Boyne Ransomware
    + hits Boyne
    Resorts
    online + Resorts
    systems online
    Cisco warns of attacks targeting the CVE- systems
    Russian
    2020-3118 vulnerability found to affect Russian
    Hackers
    Attack US multiple carrier-grade routers that run the Hackers
    + Government Cisco IOS XR Software. Attack US
    networks, + Government
    Exfiltrated networks,
    “The vulnerability is due to improper Exfiltrated
    data
    validation of string input from certain data
    Sopra Steria
    falls victim fields in the Cisco Discovery Protocol Sopra Steria
    + falls victim
    to Ryuk
    Ransomware
    messages. An attacker could exploit this
    vulnerability by sending a malicious
    + to Ryuk
    Ransomware

    https://securereading.com/cisco-warns-of-attacks-targeting-cve-2020-3118-vulnerability/ 10/28/2020
    Cisco warns of Attacks targeting CVE-2020-3118 Vulnerability | SecureReading Page 2 of 4

    CISCO WARNS Cisco Discovery Protocol packet to an Cisco warns


    OF ATTACKS of Attacks
    affected device, ” states the advisory.
    + TARGETING
    + targeting
    CVE-2020-3118 CVE-2020-
    VULNERABILITYSuccessful exploitation could allow the 3118
    attacker to provoke a stack overflow, Vulnerability
    which could lead the attacker to execute
    arbitrary code execution with
    administrative privileges on an affected
    device.

    Experts reveal that the flaw can be


    executed by unauthenticated, adjacent
    attackers (Layer 2 adjacent) in the same
    broadcast domain as the affected
    LATEST
    THREAT devices.
    PUBLIC
    NEWS SPOTLIGHT
    The flaw is listed in the top 25 security
    Link vulnerabilities, shared by the US Ransomware
    Previews Crisis
    National Security Agency (NSA), and
    in Planning-
    Messaging
    Apps
    currently exploited or targeted by Chinese
    + Preparing

    + inflicts
    state-sponsored hacking groups. for Cyber
    Security’s
    Privacy Gray Rhino-1
    The IOS XR Network OS is deployed on
    Risks;
    several Cisco router families including Is Online
    Expert
    Safety a
    Warns NCS 540 & 560, NCS 5500, 8000, and ASR
    Top
    WastedLocker 9000 series routers. Priority
    Ransomware for

    + hits Boyne
    Resorts
    The flaw also affects third-party white box + Parents?
    Tips to
    online routers and Cisco products if they run
    encourage
    systems vulnerable Cisco IOS XR Software Internet
    versions and that have the Cisco Safety for
    Russian
    Kids
    Hackers Discovery Protocol enabled both on at
    Attack US least one interface and globally. Below the
    + Government
    list of impacted devices:
    networks,
    Exfiltrated
    data

    https://securereading.com/cisco-warns-of-attacks-targeting-cve-2020-3118-vulnerability/ 10/28/2020
    Cisco warns of Attacks targeting CVE-2020-3118 Vulnerability | SecureReading Page 3 of 4

    • ASR 9000 Series Aggregation Covid


    Sopra Steria
    Impact –
    falls victim Services Routers
    + to Ryuk • Carrier Routing System (CRS)
    Increased
    Digital
    Ransomware
    • IOS XRv 9000 Router Adoption
    CISCO WARNS • Network Convergence System (NCS) and
    OF ATTACKS + Banking
    + TARGETING
    540 Series Routers
    Cyber
    CVE-2020-3118 • Network Convergence System (NCS) Frauds –
    VULNERABILITY 560 Series Routers How to
    • Network Convergence System (NCS) safeguard
    Your
    1000 Series Routers
    Money?
    • Network Convergence System (NCS)
    How to
    5000 Series Routers Survive
    • Network Convergence System (NCS) the
    COVID
    5500 Series Routers
    • Network Convergence System (NCS)
    + Time
    Cyber
    6000 Series Routers Security
    Threats?
    “In October 2020, the Cisco Product An
    introduction
    Security Incident Response Team (PSIRT)
    received reports of an attempted
    + to Cyber
    Security
    exploitation of this vulnerability in the
    wild,” states the updated advisory.

    Cisco also recommends that customers


    upgrade to a fixed Cisco IOS XR Software
    release to remediate this vulnerability.

    For the latest cyber threats and the latest


    hacking news please follow us
    on Facebook, Linkedin, and Twitter.

    You may be interested in reading: How to


    Survive the COVID Time Cyber Security
    Threats?

    https://securereading.com/cisco-warns-of-attacks-targeting-cve-2020-3118-vulnerability/ 10/28/2020
    Cisco warns of Attacks targeting CVE-2020-3118 Vulnerability | SecureReading Page 4 of 4

    ← Pfizer leaks Customer Prescription info


    and Call transcripts

    Sopra Steria falls victim to Ryuk Ransomware


    Copyright © 2020 SecureReading

    https://securereading.com/cisco-warns-of-attacks-targeting-cve-2020-3118-vulnerability/ 10/28/2020

    You might also like