[German]A vulnerability (CVE-2021-34746) was recently found in the TACACS+ authentication, authorization and accounting (AAA) feature of Cisco's Enterprise NFV Infrastructure software. This is a solution designed to virtualize network services for easier management of virtual network functions (VNFs). The CVE-2021-34746 vulnerability has already been exploited in attacks.
Advertising
Now Cisco has released a patch to close the CVE-2021-34746 vulnerability. The colleagues from Bleeping Computer have picked up on this and point it out in the following tweet.