Actively exploited Cisco ASA, FTD vulnerability addressed

Actively exploited Cisco ASA, FTD vulnerability addressed

Updates have been issued by Cisco to fix a medium-severity flaw in its Adaptive Security Appliance’s and Firepower Threat Defense Software’s Remote Access VPN service, tracked as CVE-2024-20481, which has already been leveraged in ongoing… Article Source https://www.scworld.com/brief/actively-exploited-cisco-asa-ftd-vulnerability-addressed

Cisco fixed tens of vulnerabilities, including an actively exploited one

Cisco fixed tens of vulnerabilities, including an actively exploited one

Cisco fixed tens of vulnerabilities, including an actively exploited one Pierluigi Paganini October 24, 2024 Cisco patched vulnerabilities in ASA, FMC, and FTD products, including one actively exploited in a large-scale brute-force… Article Source https://securityaffairs.com/170203/breaking-news/cisco-fixed-tens-of-vulnerabilities-including-actively-exploited-one.html

Cisco releases security patch for actively exploited zero-day vulnerability in Nexus switches.

Cisco releases security patch for actively exploited zero-day vulnerability in Nexus switches.

Cisco has released patches for several Nexus switch series to address a vulnerability that allows attackers to execute bash commands in the underlying operating system by exploiting an insufficient validation of arguments passed with configuration commands. This flaw, identified as CVE-2024-20399, affects various Cisco switches including MDS 9000 Series Multilayer Switches, Nexus 3000 Series Switches, … Read more

Two vulnerabilities discovered by Citrix, both actively exploited

Two vulnerabilities discovered by Citrix, both actively exploited

Two vulnerabilities have been discovered in NetScaler ADC and NetScaler Gateway, previously known as Citrix ADC and Citrix Gateway, impacting six supported versions. The first vulnerability, CVE-2023-6548, requires access to NSIP, CLIP, or SNIP with access to the management interface, allowing threat actors to authenticate remote code execution on the device. The severity of this … Read more