Cisco IOS and IOS XE

Cisco released security updates to patch a critical vulnerability in the Cluster Management Protocol (CMP) of its IOS and IOS XE software. If exploited successfully, an unauthenticated, remote threat actor could cause a device reload or execute code with elevated privileges. The NJCCIC recommends all users and administrators review the Cisco Security Advisory for more information and a list of affected devices and apply the necessary updates.