Positive Technologies IDs Cisco Vulnerability That Allowed Criminals to Remotely Execute Arbitrary Code & Control Firewall
Users are advised to install new versions of Cisco FDM On-Box, and check for signs of penetration using NTA and SIEM systems.
August 02, 2021
PDF
August 2, 2021 – Positive Technologies researchers, Nikita Abramov and Mikhail Klyuchnikov have discovered a vulnerability in Cisco Firepower Device Manager (FDM) On-Box – a product designed to locally configure Cisco Firepower NGFW firewalls – that could have allowed attackers to control a device. According to Forrester Research, Cisco is a recognized leader in the corporate firewall market. The flaw has been patched.
Vulnerability CVE-2021-1518 gained the CVSS 3.1. score of 6.3. The flaw was discovered in REST API[1] of Cisco FDM On-Box software, and allowed an authenticated remote attacker to execute arbitrary code in the operating system of an affected device.
Perempuan Paruh Baya Ditemukan Meninggal di Situ Cipondoh, Pinang, Tangerang
Kiki Ilustrasi mayat mengapung /Pikiranrakyat
Penemuan mayat di Kecamatan Pinang, Kota Tangerang ini ditemukan oleh seorang pencari ikan.
Kapolsek Pinang, Iptu Tapril membenarkan soal penemuan jasad wanita tersebut.
Menurut dia, mayat ditemukan seorang pencari ikan karena tersangkut dijaringnya.