Cisco Patches High-Severity Vulnerabilities in ACI Components


Customers of Cisco’s Application Centric Infrastructure (ACI) software-defined networking technology were advised on Wednesday that patches were now available for two high-severity vulnerabilities.

By luring a user into clicking on a malicious link, a remote, unauthenticated attacker can take advantage of the vulnerability to carry out cross-site request forgery (CSRF) attacks. The attacker might then utilise the compromised user’s rights to perform actions on the system that was being attacked.

Read More…