Bleeping Computer

Cisco patches critical Web UI RCE flaw in multiple IP phones

Cisco has addressed a critical security vulnerability found in the Web UI of multiple IP Phone models that unauthenticated and remote attackers can exploit in remote code execution (RCE) attacks. The ...
TechRepublic

New Critical Zero-Day Vulnerability Affects Web UI of Cisco IOS XE Software & Allows Attackers to Compromise Routers

New Critical Zero-Day Vulnerability Affects Web UI of Cisco IOS XE Software & Allows Attackers to Compromise Routers Your email has been sent The number of devices exposing the web UI on the internet, ...
SDxCentral

Cisco execs respond to critical IOS-XE zero-day vulnerability amid active exploitation

Update: October 20: Cisco provided an update on its investigation into the exploitation of the Web UI feature in IOS-XE. In addition to the zero-day vulnerability (CVE-2023-20198) disclosed on October ...