ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·10/10/2023
CVE-2023-20109 added to CISA KEV: Cisco IOS and IOS XE
Status: ✅ Confirmed exploited in the wild
Date added: 2023-10-10
Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Due date: 2023-10-31
Why this matters
Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.
Sources
Lyrie Verdict
Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.