Security News

Verizon announced the expansion of its long-standing strategic partnership with Cisco, with the addition of three new SD-WAN managed services offerings. "These new services reflect the significant ongoing joint Cisco and Verizon research and development investments which aim to help customers accelerate change."

Bitglass extended its leadership in the secure access service edge market by announcing an expansion of its SD-WAN integration ecosystem. Customers can now leverage Bitglass' platform to secure traffic flowing from remote locations via Cisco, Alkira, Aryaka, Palo Alto Networks, and Versa.

Bitglass announced additional technical integrations between its platform and SD-WAN providers. Specifically, organizations can now use Bitglass to secure traffic coming from branch locations via Citrix, Arista Networks, Aviatrix, and Sophos.

Bitglass announced technical integrations between SD-WAN providers Aruba, 128 Technology, Fortinet, and Silver Peak and its secure access service edge offering; extending market-leading security to traffic stemming from remote locations. With its cloud-native Polyscale Architecture, Bitglass is able to leverage AWS Transit Gateway Connect to integrate with SD-WAN solutions connected to AWS. This enables any organization to integrate its existing SD-WAN fabric with the leading SASE platform from Bitglass.

Cisco this week released software updates to address multiple vulnerabilities across its product portfolio, including critical severity bugs in several small business VPN routers and SD-WAN products. The company warned that the web-based management interface of small business RV160, RV160W, RV260, RV260P, and RV260W VPN routers is affected by seven severe vulnerabilities that could be abused by unauthenticated, remote attackers to execute arbitrary code as root.

Cisco SD-WAN Buffer Overflow Vulnerabilities: Systems running the Cisco SD-WAN software - such as SD-WAN vEdge Routers - can be exploited "By sending crafted IP traffic through an affected device, which may cause a buffer overflow when the traffic is processed." A successful attack can result in the execution of arbitrary code on the underlying operating system with root privileges, which means you basically hand over the gear to a stranger. Cisco SD-WAN Command Injection Vulnerabilities: These can be exploited by authenticated users to gain root-level privileges on a system running the vulnerable software.

Cisco this week released patches to address a significant number of vulnerabilities across its product portfolio, including several critical flaws in SD-WAN products, DNA Center, and Smart Software Manager Satellite. Several command injection bugs addressed in SD-WAN products could allow an attacker to perform actions as root on the affected devices, the most important of which is rated critical severity, featuring a CVSS score of 9.9.

Cisco is warning of multiple, critical vulnerabilities in its software-defined networking for wide-area networks solutions for business users. Three critical flaws were found in Cisco smart software manager satellite, which offers businesses real-time visibility and reporting of their Cisco licenses.

Cisco has released security updates to address pre-auth remote code execution vulnerabilities affecting multiple SD-WAN products and the Cisco Smart Software Manager software. Unauthenticated attackers can remotely exploit buffer overflow and command injection bugs to execute arbitrary code or to run arbitrary commands on the underlying operating system of devices running vulnerable releases of SD-WAN and Cisco Smart Software Manager Satellite software.

As per the report by PMR, the global SD-WAN market is projected to grow rapidly and reach a valuation of $53 billion by the end of 2030. Worldwide SD-WAN market The appliances segment in the SD-WAN market is expected to gain significant share, owing to increasing adoption of cloud platforms.