Subscribe To Our Newsletter!

Stay up to date on the top trending threats as well as the top stories in Security, Networks, Cloud, IT Ops & AIOps.

KNOW your vulnerability of the week

What’s trending and what’s not?

Post by Rajarshi Mitra Sep 04, 2020

Along with malware, threat actors, and attack methods, another category that you can use KNOW to research on are “vulnerabilities.” Let’s quickly check out our threat intel dashboard:

CVE

As per the data, CVE-2020-3566 is the most trending vulnerability of the last 7 days, and for the last 60 days, as well.

CVE-2020-3566, according to the NVD (National Vulnerability Database), is an extremely dangerous vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco’s IOS XR Software.

What does it do?

The CVE-2020-3566 can allow an unauthenticated, remote threat actor to access a device and completely exhaust its process memory. In turn, this leads to instability of other processes, which may include but are not limited to interior and exterior routing protocols.

Investigating vulnerabilities in the global threat landscape

Another interesting way to do some more threat research surrounding vulnerabilities is through KNOW’s trending stories section. KNOW is not just a threat intel dashboard, but it also happens to be a news aggregator serving up the latest and hottest stories in the cybersecurity space.

CVE

As you can see, the hottest news in this section is the two zero-day vulnerabilities in the IOS XR software used by Cisco Network Converging System carrier-grade routers. These vulnerabilities are currently being exploited actively by hackers. The vulnerabilities are CVE-2020-3566 (the one we discussed in the section above) and CVE-2020-3569.

However, KNOW gives you a full 360-degree view of what’s going on in the market. Firstly, it collates all the related articles in one place so that you can gain as much context as possible about the issue.

Along with that, there are two more avenues of threat research.

#1 Selected Tweets

CVE

KNOW collects the most trending tweets about these topics and presents them to you in your story card. Let’s look at the tweets that KNOW has gathered for this story:

@SearchSecurity:

Cisco discovered attempted exploitation of a high-severity vulnerability found in the IOS XR software used in some of its networking equipment.

@eyeTSystems:

CVE-2020-3473 A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell user to elevate privileges and gain full administrative control of the device.

@SecurityMagnate:

threatmeter: Cisco Releases Security Advisory for DVMRP Vulnerability in IOS XR Software Original release date: August 31, 2020

Cisco has released a security advisory on a vulnerability—CVE-2020-3566—in the Distance Vector Multicast Routing Protocol.

#2 Related CVEs

cve

For this particular story card, we have related vulnerability sections on the side.

  • CVE-2020-3452 
  • CVE-2020-3118
  • CVE-2020-3120

Now, let’s take a closer look at each of these vulnerabilities and gain insight into them.

CVE-2020-3452

  • CVSS 3.0 score: 6.5. 
  • Exploit: Available. 
  • Patch: Available. 
  • Description: Its a vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software
  • Vendors: Cisco. 
  • Products affected: Ucs Manager.

CVE-2020-3118

  • CVSS 3.0 score: 8.8 
  • Exploit: Available 
  • Patch: Available. 
  • Description: A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software
  • Vendors: Cisco. 
  • Products affected: Ios Xr.

CVE-2020-3120

  • CVSS 3.0 score: 6.5 
  • Exploit: Available. 
  • Patch: Available. 
  • Description: A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software
  • Vendors: Cisco. 
  • Products affected: Ucs Manager.

So, KNOW gives you a quick snapshot of all the related vulnerabilities, helping you grasp the overall picture of what you are dealing with.

What is KNOW?

KNOW is Netenrich’s Threat Intel Platform that extracts data from billions of data points and correlates relevant intel and expert analyst insights to help you follow, search, and act—in a fraction of the time it takes now.

One of KNOW’s handiest tools is the trending threats dashboard, which gives you a bird’s eye view of the most potent malware, threat actors, methods, and vulnerabilities in the following time frames:

  • Last 7 days.
  • Last 60 days.

So, want to check out KNOW some more? Why don’t you sign up? Did we mention that it’s completely free?
Or subscribe to get daily threat intel updates.

.

About the Author

Rajarshi Mitra

Rajarshi is a creative and accomplished writer who made his mark in the blockchain space before stepping into cybersecurity. When he is not working, he is busy chilling with his wife and cat.

Subscribe To Our Newsletter!

The best source of information for Security, Networks, Cloud, and ITOps best practices. Join us.

Thank you for subscribing!

Related Post

Apr 16 2021

KNOW What Happened This Week: BokBot, APT29 The Dukes, CVE-2

US, Canada, and UK Blames Russian Government for S...

Read More
Apr 02 2021

KNOW The Cybersecurity Pulse in March – Black KingDom,

A quick look at the most trending cybersec news an...

Read More
Mar 25 2021

KNOW What Happened This Week – Sodinokibi, HAFINUM, and CVE-

HAFINUM attacks Microsoft Servers, F5 releases pat...

Read More