In practice, an attacker can use this access to steal licenses, or disrupt or revoke licensed features. However, it is more likely that consensus is used to bridge lateral movements deep within the network.
Some better news
There is an important caveat: any attacker exploiting the flaw would need to first change the password to gain access. Given how central licensing is to day-to-day network management, organization managers will realize this very quickly. Equally, however, regaining control of a hijacked server would not be quick or easy.
Cisco said that, so far, its product security incident response team (PSIRT) is not aware of any malicious exploits against the vulnerability, indicating that the issue is hopefully contained.
Source link