Cisco has patched two critical vulnerabilities that affects its Data Center Network Manager (DCNM) product. Both are rated very high CVSS score of 9.8 and could be exploited without authentication.
Cisco has patched a critical vulnerability in the REST API of Cisco’s Elastic Services Controller that could lead to an attacker bypassing authentication on the REST API.
Cisco released security updates to patch a critical “SSH Key” vulnerability in Cisco Nexus 9000 series software as well as 22 High and 18 Medium severity bugs in multiple products, such as Cisco’s Web Security Appliance, Umbrella, Adaptive Security Appliance, Firepower, Small Business routers and others.
Cisco released security updates to patch critical vulnerabilities in multiple Cisco IOS products as well as high severity bugs in Cisco Wireless LAN, IOS, and other products. Two advisories have been updated with known public vulnerability exploits as recently evealed in Sea Turtle DNS hijacking campaign.
Cisco’s Talos security team has observed ongoing malware distribution campaigns that use a new version of a keylogger and password stealer “HawkEye Reborn v9.”
Multiple VPN applications are vulnerable to not properly encrypting sensitive data and insecurely storing session cookies.
Cisco released a new security update warning users of ongoing, limited, exploitation of a critical WebEx vulnerability that impacts multiple products.
Cisco released an updated security advisory warning of active scanning activity for a highly critical remote code execution (RCE) vulnerability in the web-based VPN management interface of Cisco RV110W, RV130W, and RV215W Routers.
Cisco has warned of a highly critical remote code execution (RCE) vulnerability in the web-based VPN management interface of Cisco RV110W, RV130W, and RV215W Routers.
Cisco released security updates for high and moderate severity vulnerabilities in multiple Cisco products, to include HyperFlex and Prime infrastructure. The company also issued an updated advisory for the open container runc vulnerability and latest products impacted.