CVE-2022-20821 — Actively Exploited: IOS XR (Cisco)
Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.
| CVE ID | CVE-2022-20821 |
|---|---|
| Vendor | Cisco |
| Product | IOS XR |
| Vulnerability name | Cisco IOS XR Open Port Vulnerability |
| Date added | 2022-05-23 |
| Remediation due | 2022-06-13 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →