Rewterz Threat Alert – Trickbot gtag red5 distributed as a DLL file
March 18, 2020Rewterz Threat Alert – Plugx Delivered by Covid-Themed Documents
March 19, 2020Rewterz Threat Alert – Trickbot gtag red5 distributed as a DLL file
March 18, 2020Rewterz Threat Alert – Plugx Delivered by Covid-Themed Documents
March 19, 2020Severity
High
Analysis Summary
CVE-2020-3265
The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending a crafted request to an affected system. A successful exploit could allow the attacker to gain root-level privileges.
Impact
Privilege Escalation
Affected Vendors
Cisco
Affected Products
Cisco SD-WAN Solution software release earlier than Release 19.2.2
Remediation
Please see vendors advisory for the list of affected products and upgraded patches.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwpresc-ySJGvE9