Cisco has patched a vulnerability in its Emergency Responder software that allows unauthenticated attackers to log in using default credentials. #Cisco #EmergencyResponder #vulnerability #securitydefect

Cisco warns of a critical vulnerability (CVE-2023-20101) that can be exploited by remote attackers to log in to affected devices with root account access. #Cisco #vulnerability #rootaccount

The vulnerability is due to the presence of static user credentials for the root account, which cannot be changed or deleted. #vulnerability #rootaccount #staticcredentials

The affected software version is Cisco Emergency Responder Release 12.5(1)SU4. Users are urged to apply the available patches immediately. #CiscoEmergencyResponder #softwarepatch

Emergency Responder software is used to route emergency calls to the appropriate Public Safety Answering Point (PSAP) and provide accurate geolocation of callers. #EmergencyResponder #PSAP #geolocationOfCallers

https://www.securityweek.com/cisco-plugs-gaping-hole-in-emergency-responder-software/