← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-20821 — Actively Exploited: IOS XR (Cisco)

Cisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.

CVE IDCVE-2022-20821
VendorCisco
ProductIOS XR
Vulnerability nameCisco IOS XR Open Port Vulnerability
Date added2022-05-23
Remediation due2022-06-13
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionCisco IOS XR software health check opens TCP port 6379 by default on activation. An attacker can connect to the Redis instance on the open port and allow access to the Redis instance that is running within the NOSi container.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →