CISCO has warned that hackers have been exploiting a critical bug in its Catalyst SD-WAN products to break into large enterprise networks for at least three years. The vulnerability has a maximum-rated severity score of 10.0 and enables attackers to remotely access devices, potentially giving them the highest level of permissions and the ability to maintain persistent, hidden access to a victim’s network. Cisco said its researchers traced evidence of exploitation as far back as 2023.
The company’s findings come as governments and security groups urge organisations to take action to mitigate the risk posed by the bug. Read more at TechCrunch, according to TechCrunch.