The high severity zero-day vulnerabilities have been found in Cisco IOS XR – An Internetwork Operating System (IOS) that is shipped with Cisco’s networking equipment. The vulnerabilities allow an unauthenticated, remote attacker to exhaust process memory and crash the other processes running on the affected device. Vulnerabilities Details(CVE-2020-3566 and CVE-2020-3569): Cisco has released a security […]
Read More →Cisco has released a Security Advisory for the actively exploited worldwide CVE-2020-3452. Cisco Read-Only Path Traversal Vulnerability in the web services interface of Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to perform directory traversal attacks & read sensitive files on the system. Rapid 7 Researchers found […]
Read More →Cisco has rolled out security patches for eleven different products. Advisories released for Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software are considered important. The most severe of these vulnerabilities could enable an attacker to perform a directory traversal attack thereby gaining read and delete access to sensitive files on the affected […]
Read More →Cisco has released updates for a set of vulnerabilities. These vulnerabilities include six high severity and six medium severity vulnerabilities. The main highlight for this set of Cisco updates is the patching of a recently discovered vulnerability in Wi-Fi Access points and routers, widely known as Kr00k. Getting rid of the Kr00k Kr00k (CVE-2019-15126) is […]
Read More →Fig 1: Image credit: zdnet.com Armis Security Inc., a cybersecurity firm based in United States, has discovered five critical vulnerabilities in a networking protocol developed by Cisco. These flaws could enable hackers to target virtually all devices, from data center switches to cameras and IP phones worldwide. These vulnerabilities were disclosed when Cisco released fixes […]
Read More →Cisco has rolled out security patches for fourteen different products. Advisories released for Cisco Webex Video Mesh and Cisco IOS and Cisco IOS XE Software are considered important. The most severe of these vulnerabilities could allow an attacker to remotely execute commands and take control of an affected system. Cisco has released security updates for […]
Read More →Cisco released security updates for Cisco Data Center Network Manager (DCNM), a platform for managing Cisco’s data center deployments, switches and fabric extenders that run NX-OS. A total of 12 vulnerabilities in DCNM were addressed in 6 advisories, one of which has been rated critical, three rated high and two rated medium in severity. Summary […]
Read More →Cisco noticed a steep rise in the exploitation attempts of a critical vulnerability in Cisco Adaptive Security Appliance (ASA) and Firepower Appliance. Cisco ASA is a family of security devices which is known to have a million deployments around the world. CVE-2018-0296 is a denial of service vulnerability which has been abused by attackers a […]
Read More →A new set of vulnerabilities were identified and fixed by Cisco, the most critical of which could allow a remote attacker to take control of the system. Likewise, security updates are now available for Cisco’s products which include eight advisories rated high in severity and seven rated medium. One of the high severity bugs allow […]
Read More →