cisco-sa-tebbot-cmdinj-wN3yQ5gn: Cisco ThousandEyes Enterprise Agent BrowserBot Command Injection Vulnerability
A vulnerability in the BrowserBot component of Cisco ThousandEyes Enterprise Agent could have allowed an authenticated, remote attacker to execute arbitrary commands on Agents on behalf of the BrowserBot synthetics orchestration process. Cisco has addressed this vulnerability in the Cisco
Affected Software
Event History
Frequently Asked Questions
What is the severity of cisco-sa-tebbot-cmdinj-wN3yQ5gn?
The cisco-sa-tebbot-cmdinj-wN3yQ5gn vulnerability is rated as a high-severity issue that allows command injection.
How do I fix cisco-sa-tebbot-cmdinj-wN3yQ5gn?
To mitigate the cisco-sa-tebbot-cmdinj-wN3yQ5gn vulnerability, it is recommended to update to the latest version of Cisco ThousandEyes Enterprise Agent.
Who is affected by cisco-sa-tebbot-cmdinj-wN3yQ5gn?
The cisco-sa-tebbot-cmdinj-wN3yQ5gn vulnerability affects users running the Cisco ThousandEyes Enterprise Agent.
What type of attack is possible due to cisco-sa-tebbot-cmdinj-wN3yQ5gn?
Due to the cisco-sa-tebbot-cmdinj-wN3yQ5gn vulnerability, an authenticated remote attacker could execute arbitrary commands on the affected system.
Is cisco-sa-tebbot-cmdinj-wN3yQ5gn limited to specific versions?
The cisco-sa-tebbot-cmdinj-wN3yQ5gn vulnerability impacts specific versions of Cisco ThousandEyes Enterprise Agent, and users should verify their version for exposure.