PRIVATE_FEEDS/CVE_VULN_FEED/CVE-2020-10188-cisco_os_telnetd/alert_text.md

Cisco released an advisory for it's products using IOS XE (see below) with a critical vuln in telnetd, leading to RCE (CVE-2020-10188, CVSS 9.8)

Affected are some procutlines like Catalyst-Switches, Edgerouters (ASR 10XX, ASR 900) or branchrouters (XXX ISR)

FP-Notice: while we can find lots of IOS-Devices running telnetd, we cannot for sure decide wether it is IOS-XE or any of the affected products, so beware of False-Positives.

we found various IPs in your ORG/ASN, matching criteria for possible vulnerable systems

please find a list of affected IPs below and more information on that problem here:

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-telnetd-EFJrEzPx
• https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html#products