Security researchers have discovered critical vulnerabilities in Citrix SD-WAN appliance. Hackers could remotely exploit the vulnerabilities without authentication and gain root access.
Cisco has patched two critical vulnerabilities that affects its Data Center Network Manager (DCNM) product. Both are rated very high CVSS score of 9.8 and could be exploited without authentication.
Apple has released AirPort Base Station Firmware Update 7.91 to address multiple vulnerabilities in AirPort Extreme and AirPort Time Capsule base station routers.
Cisco has patched a critical vulnerability in the REST API of Cisco’s Elastic Services Controller that could lead to an attacker bypassing authentication on the REST API.
Cisco released security updates to patch a critical “SSH Key” vulnerability in Cisco Nexus 9000 series software as well as 22 High and 18 Medium severity bugs in multiple products, such as Cisco’s Web Security Appliance, Umbrella, Adaptive Security Appliance, Firepower, Small Business routers and others.
Security experts warn of a new cyber threat campaign dubbed “Sea Turtle” that targets public and private organizations in the Middle East and North Africa. The ongoing operation likely lasted from January 2017 through the first quarter of this year.
The CERT Coordination Center (CERT/CC) has released a security advisory describing multiple vulnerabilities that impact Broadcom WiFi chipset drivers. Four vendors have confirmed they are impacted at the time of the latest published advisory on Wednesday.
The Wi-Fi Alliance® issued a security update confirming the discovery of vulnerabilities in WPA3-Personal by security researchers. The vulnerabilities collectively dubbed “DragonBlood” is based on the underlying Dragonfly handshake used by WPA3.
Cisco released security updates for high and moderate severity vulnerabilities in multiple Cisco products, to include HyperFlex and Prime infrastructure. The company also issued an updated advisory for the open container runc vulnerability and latest products impacted.
A security researcher warned that internet-facing Ubiquiti devices were exposed to potentially future cyber attacks. Rapid7 confirmed in a blog post that attackers could exploit the device services over port 10001/UDP and use the devices to launch future DDoS attacks.