Unauthenticated attackers could exploit a Critical BIG-IP iControl REST vulnerability CVE-2022-1388 to execute arbitrary system commands, create or delete files, or disable services on BIG-IP systems.
Cisco has released a security updates for Spring Framework (“Spring4Shell”), Firepower Management Center (FMC) and IOS XR software that address Critical and High severity vulnerabilities.
Cisco has issued an updated Critical security advisory for a Spring Framework vulnerability CVE-2022-22965 that affects multiple Cisco products. The networking giant also released a security update for a Critical LAN wireless controller vulnerability.
Juniper Networks has released security advisories to fix many vulnerabilities on Junos OS and multiple other products.
Cisco has released a High risk security advisory for an Email Security Appliance DNS Verification Denial of Service (DoS) vulnerability, as well as several other vulnerabilities in Nexus switches and NX-OS software.
Sandworm threat actors, also known as Voodoo Bear, are now using a new malware dubbed Cyclops Blink, a replacement for VPNFilter malware previously exposed in 2018, to target small office/home office (SOHO) routers and network attached storage (NAS) devices.
A security researcher has discovered multiple vulnerabilities in Airspan Networks Mimosa products that could result in remote code execution, denial-of-service condition, or leak sensitive information.
Cisco has released a Critical security update for multiple vulnerabilities in Small Business RV Routers. Several of those vulnerabilities are rated Critical severity and have the highest rated CVSS score of 10.0.
The National Institute of Standards and Technology (NIST) has issued the NIST SP 800-121 Revision 2: “Guide to Bluetooth Security.”
SonicWall has released new firmware updates for SMA 100 Series remote access devices with fixes for multiple High risk vulnerabilities.
