Three models of Cisco small-business routers firewalls are open to hacking. There is critical unpatched vulnerability that allows hackers to remotely exploit your device.
Cisco warned about the vulnerability this week in a security advisory however there are no patches at the moment. Cisco plans to release the updated firmware sometime in the third quarter of 2016.
Cisco small-business routers firewalls are open to hacking easily as the exploit allows access via remote management and hackers have to only send an unauthenticated HTTP request. This request will result in remote code execution as root and lead to your device being compromised.
In order to protect your business, Cisco has asked to disable remote management. Follow these instructions to disable:
- Open the web-based management interface for the device
- Select Basic Settings > Remote Management.
- If the Enable check box is checked, remote management is enabled for the device. Unchecked it.
Cisco has stated that there has been no indication that any of these security flaws have been exploited however time will tell.