Cisco Smart Software Manager On-Prem Arbitrary Command Execution Vulnerability — CISCO-SA-SSM-CLI-EXECUTION-CHUCWUNR
Cisco · Cisco · CISCO-SA-SSM-CLI-EXECUTION-CHUCWUNR
ID
CISCO-SA-SSM-CLI-EXECUTION-CHUCWUNR
CISCO-SA-SSM-CLI-EXECUTION-CHUCWUNR
Date
Activity
Source
Cisco
Cisco
Vendor
Cisco
Cisco
Threat
critical
critical
Summary
A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected SSM On-Prem host. This vulnerability is due to the unintentional exposure of an internal service. An attacker could exploit this vulnerability by sending a crafted request to the API of the exposed service. A…
Product
Cisco Smart Software Manager On-Prem Arbitrary Command Execution
What to do
General, cautious steps (verify details in the official source):
- Prioritize patching or mitigation immediately (treat as actively risky).
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Read the official advisory for exact affected versions and remediation steps.