Cisco Patches Critical Authentication Bypass Bug
Healthcare Info Security
Cisco has released an urgent software update to fix a critical authentication bug, that can allow an unauthenticated, remote attacker to bypass authentication and log in to an affected device as an administrator.
"There are no workarounds that address this vulnerability," says Cisco.
The bug assigned CVE-2021-34746 with a CVSS score of 9.8 has been rated critical. The vulnerability affects the TACACS+ authentication, authorization and accounting feature of Cisco Enterprise NFV Infrastructure Software.
Cisco Enterprise NFV Infrastructure Software enables...