Cisco has disclosed a critical vulnerability in its Smart Software Manager (SSM) On-Prem, which allows attackers to change any user's password, including admin passwords. This vulnerability, rated at maximum severity (10.0), poses significant risks to affected systems, particularly within the authentication system. The flaw has been widely reported and is a major concern for cybersecurity professionals. Additionally, the Cybersecurity and Infrastructure Security Agency (CISA) has added this bug, along with two others, to its known exploited vulnerability catalog. Cisco has urged users to take immediate action to mitigate the potential impact of this vulnerability.