🔴 Critical | Source: CISA Known Exploited Vulnerabilities
A vulnerability in Cisco IOS 12.4 allows remote attackers to perform cross-site request forgery (CSRF) attacks, tricking authenticated users into executing arbitrary commands on the router via specially crafted URLs. This can result in full device compromise at privilege level 15, the highest administrative tier. Despite its age, CISA has confirmed active exploitation, making remediation urgent.
Security Architect’s Take: Audit your estate for any Cisco IOS 12.4 devices — particularly those with HTTP/HTTPS management interfaces exposed — and disable the web-based management interface immediately where not required. Apply available patches or upgrade IOS versions, and enforce network-level controls to restrict management plane access to trusted IP ranges only.
Original advisory: CVE-2008-4128: Cisco IOS