Hacking News Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices - Printable Version +- (https://hackmyride.com/forum) +-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211) +--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278) +---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279) +---- Thread: Hacking News Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices (/showthread.php?tid=9390)

Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices - The Hacker News - 10-21-2023 Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices Cisco has warned of a new zero-day flaw in IOS XE that has been actively exploited by an unknown threat actor to deploy a malicious Lua-based implant on susceptible devices. Tracked as CVE-2023-20273 (CVSS score: 7.2), the issue relates to a privilege escalation flaw in the web UI feature and is said to have been used alongside CVE-2023-20198 as part of an exploit chain. "The attacker first https://thehackernews.com/2023/10/cisco-zero-day-exploited-to-implant.html