2 matches found
Cisco Starts Patching Firmware Bug; Millions of Devices Still Vulnerable
Cisco has issued a handful of firmware releases for a high-severity vulnerability in Cisco’s proprietary Secure Boot implementation that impacts millions of its hardware devices, across the scope of its portfolio. The patches are the first in a planned series of firmware updates that will roll ou...
CVE-2019-1649
CVE-2019-1649 concerns Cisco’s Secure Boot Trust Anchor module (TAm). The flaw stems from an improper check in the FPGA/ Trust Anchor bitstream handling, enabling an authenticated, local attacker with OS access to write a modified firmware image to the FPGA. Consequences include potential device ...