Latest Privacy

Theregister

Good heavens, is it time to patch Cisco kit again? Prime Infrastructure root privileges hole plugged

By Gareth Corfield 17 May 2019 at 10:05

Among a bumper crop of 57 security issues Cisco divulged on Wednesday was a fix for a trio of vulns, one critical, in networks management tool Prime Infrastructure. The latter potentially allows unauthenticated miscreants to execute arbitrary code with root privileges on PI devices. CVE-2019-1821 "can be exploited by an unauthenticated attacker that has network access to the affected [web] administrative interface," Cisco said in an advisory.

Read more