Cisco was reported with a critical vulnerability that could allow threat actors to log in to the affected devices as a root account. The CVE for this vulnerability has been given as CVE-2023-20101 and has a severity of 9.8 (Critical).
Cisco has released a security advisory for addressing this vulnerability, and patches have been updated for the affected products.Â
Implementing AI-Powered Email security solutions “Trustifi” can secure your business from todayâ€™s most dangerous email threats, such as Email Tracking, Blocking, Modifying, Phishing, Account Take Over, Business Email Compromise, Malware & Ransomware
This particular vulnerability exists due to static user credentials for the root account configured during development. The root account has default and static credentials that cannot be changed or deleted.
If a threat actor successfully exploits, it could allow them to log in to the affected system and execute arbitrary commands as the root user.Â