Security News

Cisco Warns of Exploitation of Decade-Old ASA WebVPN Vulnerability
2024-12-03 12:51

Cisco on Monday updated an advisory to warn customers of active exploitation of a decade-old security flaw impacting its Adaptive Security Appliance (ASA). The vulnerability, tracked as...

Cisco scores a perfect CVSS 10 with critical flaw in its wireless system
2024-11-07 11:48

Ultra-Reliable Wireless Backhaul doesn't live up to its name Cisco is issuing a critical alert notice about a flaw that makes its so-called Ultra-Reliable Wireless Backhaul systems easy to subvert.…

Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418)
2024-11-07 09:28

Cisco has fixed a critical command injection vulnerability (CVE-2024-20418) affecting its Ultra-Reliable Wireless Backhaul (URWB) Access Points that can be exploited via a HTTP requests and allows...

Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems
2024-11-07 09:08

Cisco has released security updates to address a maximum severity security flaw impacting Ultra-Reliable Wireless Backhaul (URWB) Access Points that could permit unauthenticated, remote attackers...

Cisco bug lets hackers run commands as root on UWRB access points
2024-11-06 19:34

Cisco has fixed a maximum severity vulnerability that allows attackers to run commands with root privileges on vulnerable Ultra-Reliable Wireless Backhaul (URWB) access points that provide...

Cisco says DevHub site leak won’t enable future breaches
2024-11-04 09:14

​Cisco says that non-public files recently downloaded by a threat actor from a misconfigured public-facing DevHub portal don't contain information that could be exploited in future breaches of the...

New Cisco ASA and FTD features block VPN brute-force password attacks
2024-10-26 14:31

Cisco has added new security features that significantly mitigate brute-force and password spray attacks on Cisco ASA and Firepower Threat Defense (FTD), helping protect the network from breaches...

Exploited: Cisco, SharePoint, Chrome vulnerabilities
2024-10-25 10:25

Threat actors have been leveraging zero and n-day vulnerabilities in Cisco security appliances (CVE-2024-20481), Microsoft Sharepoint (CVE-2024-38094), and Google’s Chrome browser (CVE-2024-4947)....

Emergency patch: Cisco fixes bug under exploit in brute-force attacks
2024-10-24 18:15

Who doesn't love abusing buggy appliances, really? Cisco has patched an already exploited security hole in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that...

Cisco fixes VPN DoS flaw discovered in password spray attacks
2024-10-24 18:06

Cisco fixed a denial of service flaw in its Cisco ASA and Firepower Threat Defense (FTD) software, which was discovered during large-scale brute force attacks against Cisco VPN devices in April. [...]