Dive Brief: A vulnerability that can lead to denial of service in the remote access VPN service of Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense is facing active… Article Source https://www.cybersecuritydive.com/news/cisco-exploited-cve-vpn/731216/
Updates have been issued by Cisco to fix a medium-severity flaw in its Adaptive Security Appliance’s and Firepower Threat Defense Software’s Remote Access VPN service, tracked as CVE-2024-20481, which has already been leveraged in ongoing… Article Source https://www.scworld.com/brief/actively-exploited-cisco-asa-ftd-vulnerability-addressed
Citrix warns admins to immediately patch NetScaler for actively exploited zero-days Pierluigi Paganini January 17, 2024 Citrix fixed two actively exploited zero-day vulnerabilities… Article Source https://securityaffairs.com/157611/hacking/citrix-netscaler-zero-days.html
Cisco fixed tens of vulnerabilities, including an actively exploited one Pierluigi Paganini October 24, 2024 Cisco patched vulnerabilities in ASA, FMC, and FTD products, including one actively exploited in a large-scale brute-force… Article Source https://securityaffairs.com/170203/breaking-news/cisco-fixed-tens-of-vulnerabilities-including-actively-exploited-one.html
Cisco has disclosed a critical vulnerability in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that is actively exploited in the wild. The flaw, tracked as CVE-2024-20481, allows… Article Source https://cybersecuritynews.com/cisco-asa-ftd-vpns-vulnerability/
Cisco has released patches for several Nexus switch series to address a vulnerability that allows attackers to execute bash commands in the underlying operating system by exploiting an insufficient validation of arguments passed with configuration commands. This flaw, identified as CVE-2024-20399, affects various Cisco switches including MDS 9000 Series Multilayer Switches, Nexus 3000 Series Switches, … Read more
Two vulnerabilities have been discovered in NetScaler ADC and NetScaler Gateway, previously known as Citrix ADC and Citrix Gateway, impacting six supported versions. The first vulnerability, CVE-2023-6548, requires access to NSIP, CLIP, or SNIP with access to the management interface, allowing threat actors to authenticate remote code execution on the device. The severity of this … Read more