Cisco IOS XR Software NETCONF Over Secure Shell ACL Bypass Vulnerability

By GIXnews

A vulnerability in the access-control logic of the NETCONF over Secure Shell (SSH) of Cisco IOS XR Software may allow connections despite an access control list (ACL) that is configured to deny access to the NETCONF over SSH of an affected device.

The vulnerability is due to a missing check in … Read More here

Source:: Cisco Security Advisories