Outage in Pulsant

CVE-2023-20198 - CISCO IOS XE Privilege Escalation Vulnerability

Resolved Minor

October 17, 2023 - Started 7 months ago - Lasted 6 days
Official incident page

Need to monitor Pulsant outages?
Stay on top of outages with IsDown. Monitor the official status pages of all your vendors, SaaS, and tools, including Pulsant, and never miss an outage again.
Start Free Trial

Outage Details

Pulsant is aware of an active exploitation of a previously unknown vulnerability in the web UI feature of Cisco IOS XE Software when exposed to the internet or to untrusted networks. This vulnerability allows a remote, unauthenticated attacker to create an account on an affected system. The attacker can then use that account to gain control of the affected system. Pulsant are currently investigating all client and internal devices to determine exposure, prioritise risk reduction activities and remediation of CISCO advisory of "work-around". Please be aware that there is no vendor "patch" at this time. Pulsant will provide further updates as appropriate, where any exposures are detected, Pulsant will contact impacted parties without delay. For further information see: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z

Components affected

Pulsant Threat Intelligence Alert

Latest Updates ( sorted recent to last )

RESOLVED 6 months ago - at 10/23/2023 10:39AM

Pulsant engineers have conducted and concluded an assessment and carried out mitigation of Client managed devices last week.

Any client who needs mitigation steps has been contacted.

If you have any further questions, please contact Pulsant Technical Support

INVESTIGATING 7 months ago - at 10/17/2023 11:16AM

Pulsant is aware of an active exploitation of a previously unknown vulnerability in the web UI feature of Cisco IOS XE Software when exposed to the internet or to untrusted networks. This vulnerability allows a remote, unauthenticated attacker to create an account on an affected system. The attacker can then use that account to gain control of the affected system.

Pulsant are currently investigating all client and internal devices to determine exposure, prioritise risk reduction activities and remediation of CISCO advisory of "work-around". Please be aware that there is no vendor "patch" at this time.

Pulsant will provide further updates as appropriate, where any exposures are detected, Pulsant will contact impacted parties without delay.

For further information see:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z

Latest Pulsant outages

Zayo Fibre break between Carlisle and Moffat - 22 days ago

DNS Name Server Issues - 27 days ago

BT Copper broadband services - 28 days ago

Network issues identified at Newcastle Central DC (NE-1) - about 2 months ago

Openreach network issues. - 4 months ago

The easiest way to monitor Pulsant and all cloud vendors

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 3155 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook

Setup in 5 minutes or less

How much time you'll save your team, by having the outages information close to them?

14-day free trial · No credit card required · Cancel anytime

Start today for FREE