Major Security Flaw Found in Cisco Routers

Cisco recently revealed that two of its products - IOS and IOS XE are affected with dozen high-severity vulnerabilities, this was revealed during Cisco's bi-annual software security advisory bundle.

Also, Cisco recommended its admins to check the versions of Cisco IOS and IOS XE their devices are running to make sure that they have been updated to versions that address the 13 separate flaws it discovered.

These flaws can pave way for an attacker to unauthorized access to an affected device, allow them to run a command-injection attack, or deplete a device's resources which would lead to a denial of service.

The CVE-2019-12648 bug in the IOx application environment of IOS is the most severe and it affects large network operators who use the company's 800 Series Industrial Integrated Services Routers and its 1000 Series Connected Grid Routers.

Luckily though, the bug is contained within a guest operating system running on a virtual machine of an affected IOS device.