Cisco has updated a number of security advisories to caution against the malicious exploitation of critical vulnerabilities affecting its networking products. Five of the new advisories fix significant vulnerabilities that might have allowed remote attackers to run arbitrary code (RCE), bring about a DoS, or issue arbitrary instructions.
Many of the ‘critical’ or ‘high’ severity issues have been fixed for four to five years, yet businesses who haven’t patched their devices are still affected. The IT giant this week updated exploitation warnings to more than 20 advisories outlining security flaws in Cisco IOS, NX-OS, and HyperFlex software.