CISA Warns of Exploitation of 18-Year-Old Cisco IOS Vulnerability

CISA Warns of Exploitation of 18-Year-Old Cisco IOS Vulnerability

First seen 14 Jul 2026, 14:06 UTC Heise.DeCybersecuritynews 85% similarity 77.0

Article Content

Browse articles
ThreatCluster

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding active exploitation of CVE-2008-4128, a cross-site request forgery (CSRF) vulnerability in Cisco IOS versions 12.4(12) and 12.4(4). This vulnerability was added to CISA's Known Exploited Vulnerabilities Catalog on July 13, 2026. Attacks are reportedly linked to Russian state actors targeting poorly configured network devices worldwide. CISA has collaborated with international IT security authorities to provide a protection guide for administrators. The vulnerability, known since 2008, allows attackers to trick users into performing actions on vulnerable websites. IT managers are advised to check for affected devices and implement security measures. The attacks may compromise critical infrastructure networks globally. Cisco products remain attractive targets for cybercriminals due to their widespread use.

Key Points: • CISA warns of active exploitation of CVE-2008-4128 in Cisco IOS. • Attacks linked to Russian state actors targeting vulnerable network devices. • IT managers urged to secure routers and update vulnerable systems.

ThreatCluster AI

Timeline

2008-09-18
CVE-2008-4128 published
Cisco disclosed a CSRF vulnerability affecting IOS versions 12.4(12) and 12.4(4).
Heise.De
2018-03-28
CVE-2018-0171 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-07-13
CVE-2008-4128 added to CISA KEV
CISA added the Cisco IOS vulnerability to its Known Exploited Vulnerabilities Catalog due to active exploitation.
Cybersecuritynews
2026-07-14
CISA issues protection guide
CISA, along with international authorities, released a guide to help secure routers against attacks.
Heise.De

Community

Browse all →