CISCO Vulnerability Actively Exploited After It Was Published On Twitter

Cisco ASA vulnerability is cross-site scripting (XSS) vulnerability that is tracked as CVE-2020-3580. Initially CISCO fixed the bug in October 2020, but the patch turned out to be incomplete and the further fix was released in April 2021. After a vulnerability has been fixed and enough time has been given for devices to be upgraded, security researchers from Positive Technologies Offensive Team published a PoC exploit for the Cisco ASA CVE-2020-3580 vulnerability on Twitter. Soon it has been reported that threat actors are actively exploiting this vulnerability so administrators are recommended to immediately patch vulnerable Cisco ASA devices.