Collaborate Disseminate
Cisco Systems has released patches for some of its products that use the Apache Struts web development framework and are affected by a recently announced critical vulnerability. The flaw, tracked as CVE-2018-11776, was patched in Apache Struts two wee… Continue reading Cisco Products Receive Patches for Critical Struts Vulnerability
Cisco fixed two high severity vulnerabilities in two products this week that could have let an attacker trigger a denial of service condition or bypass local authentication. Continue reading Cisco Fixes DoS, Authentication Bypass Vulnerabilities, OSPF Bug
Researchers Tavis Ormandy and Cris Neckar privately disclosed a critical vulnerability in Cisco’s WebEx extension for Chrome and Firefox that allows for remote code execution. Continue reading Cisco Patches Another Critical Ormandy Bug in WebEx Extension
Cisco patched nine publicly disclosed remote code execution vulnerabilities in the SNMP subsystem running in its IOS and IOS XE software. Continue reading Cisco Patches Publicly Disclosed SNMP Vulnerabilities in IOS, IOS XE
Cisco patched two critical flaws in its Prime Data Center Network Manager, including one that could be exploited remotely and allow an attacker root access. Continue reading Cisco Patches Critical Flaws in Prime Data Center Network Manager
Cisco patched two critical flaws in its Prime Data Center Network Manager, including one that could be exploited remotely and allow an attacker root access. Continue reading Cisco Patches Critical Flaws in Prime Data Center Network Manager
Cisco warns of 16 flaws in its latest security bulletin, mostly impacting its Cisco AsyncOS software used in its Email Security Appliances. Continue reading Cisco Patches Critical Vulnerability in Facility Events Response System
Cisco rolls out a bevy of patches tied to vulnerabilities found in its cloud services platform, IOS software and Prime Home products. Continue reading Cisco Warns of Command Injection Flaw in Cloud Platform
Cisco today began the process of patching a zero-day vulnerability in its Adaptive Security Appliance (ASA) software exposed in the ShadowBrokers data dump. Continue reading Cisco Begins Patching Equation Group ASA Zero Day
Researchers at Silent Signal have ported the ShadowBrokers’ Equation Group exploit for Cisco ASA firewalls to newer versions of the product. Continue reading Leaked ShadowBrokers Attack Upgraded to Target Current Versions of Cisco ASA