Hackers are targeting vulnerable VPN products from Pulse Secure and Fortinet that pose risks to enterprise networks.
Cisco has released security updates to patch critical vulnerabilities in Cisco Integrated Management Controller (IMC) Supervisor, Unified Computing System (UCS) Director, and UCS Director Express for Big Data.
Security researchers have identified a security vulnerability related to encryption on Bluetooth BR/EDR connections. As a result, an unauthenticated attacker near the vulnerable device could exploit the issue and escalate privileges or steal information.
Cisco has released security updates to patch critical and high severity vulnerabilities in multiple Cisco products to include small business switches, IOS XR, Webex and others.
Cisco has released security updates to address a high severity vulnerability in its Cisco Nexus 9000 Series Fabric Switches. Attackers could exploit this issue to take control of impacted devices.
Palo Alto Networks has patched a remote code execution (RCE) vulnerability in its GlobalProtect portal and GlobalProtect Gateway interface products. These same products run on the Palo Alto Networks' firewalls.
Security researchers have discovered critical vulnerabilities in Citrix SD-WAN appliance. Hackers could remotely exploit the vulnerabilities without authentication and gain root access.
Cisco has patched two critical vulnerabilities that affects its Data Center Network Manager (DCNM) product. Both are rated very high CVSS score of 9.8 and could be exploited without authentication.
Apple has released AirPort Base Station Firmware Update 7.91 to address multiple vulnerabilities in AirPort Extreme and AirPort Time Capsule base station routers.
Cisco has patched a critical vulnerability in the REST API of Cisco's Elastic Services Controller that could lead to an attacker bypassing authentication on the REST API.