

Rewterz Threat Advisory – CVE-2022-20662 – Cisco Duo for macOS Vulnerability
October 1, 2022
Rewterz Threat Advisory – CVE-2022-20844 – Cisco Software-Defined Application Vulnerability
October 2, 2022
Rewterz Threat Advisory – CVE-2022-20662 – Cisco Duo for macOS Vulnerability
October 1, 2022
Rewterz Threat Advisory – CVE-2022-20844 – Cisco Software-Defined Application Vulnerability
October 2, 2022Severity
Medium
Analysis Summary
CVE-2022-20810
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow a remote attacker to obtain sensitive information, caused by insufficient restrictions that allow a sensitive configuration detail to be disclosed. By retrieving data through SNMP read-only community access, an attacker could exploit this vulnerability to view Service Set Identifier (SSID) preshared keys (PSKs) that are configured on the affected device.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2022-20810
Affected Vendors
Cisco
Affected Products
Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family
Remediation
Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.