Cisco urges admins to patch IOS XR zero-day exploited in attacks

20-May-22

Unauthenticated attackers could remotely access Redis instances running in NOSi Docker containers thanks to a zero-day vulnerability in Cisco’s IOS XR router software.

Because the health check RPM opens TCP port 6379 by default when activated, this vulnerability exists. An attacker might take advantage of this flaw by connecting to the Redis instance via an open port, according to Cisco. Read More…