Cisco Wide Area Application Services

Pierluigi Paganini June 09, 2018
Cisco removed hardcoded credentials in WAAS software. Undocumented accounts are a frequent issue

Cisco has removed hardcoded credentials that were in Cisco Wide Area Application Services (WAAS), which is a software designed to optimize WAN traffic management. The hardcoded credentials (CVE-2018-0329) resides in the read-only SNMP community string in the configuration file of the SNMP daemon, they could be exploited by attackers to read any data that is accessible via […]