Cisco released an advisory regarding a vulnerability in their Smart Software Manager On-Prem authentication system. This vulnerability (CVE-2024-20419) could allow “an unauthenticated, remote attacker to change the password of any user, including administrative users.”
There are no workarounds, but Cisco has released software updates. You can find more information in the Cisco advisory HERE.
