Dive Brief:

• Cisco warned users of another vulnerability exposed as part of last month’s Shadow Brokers data dump impacting a variety of products, according Cisco security advisory.
• The new vulnerability affects Cisco PIX firewalls and the code that Cisco’s IOS operating system uses to process IKEv1 packets.
• Cisco does not yet have patches available for the vulnerabilities, though the company said many of the products affected are older releases that are not supported anymore.

Dive Insight:

On Monday, Cisco acknowledged that an exploit for the newly identified flaw is publicly known, though it didn’t say when a patch would be available. Software vulnerabilities have the potential to affect customers long after the are discovered if patches aren’t installed or customers continue to use older versions of products. 

"A vulnerability in IKEv1 packet processing code in Cisco IOS, Cisco IOS XE and Cisco IOS XR Software could allow an unauthenticated, remote attacker to retrieve memory contents, which could lead to the disclosure of confidential information," according to a Cisco advisory.

Fall out from last month’s Shadow Brokers data dump continues. In August a hacking group dubbed the Shadow Brokers claimed to have stolen hacking tools that belong to the National Security Agency and was auctioning the tools on the Internet.

Cisco said, at the time, the threat level of one of the vulnerabilities — Cisco Adaptive Security Appliance SNMP Remote Code Execution Vulnerability — was high.