CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Jun 13, 2022
High
CISA KEVCVE-2022-20821
Cisco—IOS XR
Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2022-20821
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Unknown
- Published
- May 23, 2022
- KEV Added
- May 23, 2022
- Due Date
- Jun 13, 2022
- Related Articles
- 0
Vendor
Cisco
IOS XR