Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Critical Vulnerability Affecting Cisco Emergency Responder
Alerts

Critical Vulnerability Affecting Cisco Emergency Responder

6 October 2023

Cisco has released security updates to address a critical vulnerability in their Emergency Responder, an emergency communication system that helps respond to a crisis. The vulnerability has a Common Vulnerability Scoring System (CVSSv3.1) score of 9.8 out of 10.

Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to gain access to the root user of the affected system and execute arbitrary commands.

The vulnerability affects Cisco Emergency Responder Release 12.5(1)SU4.

Users and administrators of affected product are advised to update to the latest versions immediately.

More information is available here:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cer-priv-esc-B9t3hqk9

https://www.bleepingcomputer.com/news/security/cisco-fixes-hard-coded-root-credentials-in-emergency-responder/

Back to top