Updates have been issued by Cisco to fix a medium-severity flaw in its Adaptive Security Appliance’s and Firepower Threat Defense Software’s Remote Access VPN service, tracked as CVE-2024-20481, which has already been leveraged in ongoing… Article Source https://www.scworld.com/brief/actively-exploited-cisco-asa-ftd-vulnerability-addressed
Citrix warns admins to immediately patch NetScaler for actively exploited zero-days Pierluigi Paganini January 17, 2024 Citrix fixed two actively exploited zero-day vulnerabilities… Article Source https://securityaffairs.com/157611/hacking/citrix-netscaler-zero-days.html
Threat actors have been leveraging zero and n-day vulnerabilities in Cisco security appliances (CVE-2024-20481), Microsoft Sharepoint (CVE-2024-38094), and Google’s Chrome browser (CVE-2024-4947). CVE-2024-20481 (Cisco ASA/FTD) In the… Article Source https://www.helpnetsecurity.com/2024/10/25/cve-2024-20481-cve-2024-38094-cve-2024-4947/
The Cybersecurity and Infrastructure Security Agency (CISA) has announced the addition of two new vulnerabilities to its Known Exploited Vulnerabilities Catalog. These vulnerabilities in widely used technologies are… Article Source https://cybersecuritynews.com/cisco-asa-roundcube-vulnerabilities/
Cisco fixed tens of vulnerabilities, including an actively exploited one Pierluigi Paganini October 24, 2024 Cisco patched vulnerabilities in ASA, FMC, and FTD products, including one actively exploited in a large-scale brute-force… Article Source https://securityaffairs.com/170203/breaking-news/cisco-fixed-tens-of-vulnerabilities-including-actively-exploited-one.html
Cisco Patches Vulnerability Exploited in Large-Scale Brute-Force Campaign SecurityWeek Article Source https://www.securityweek.com/cisco-patches-vulnerability-exploited-in-large-scale-brute-force-campaign/
Cisco has disclosed a critical vulnerability in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software that is actively exploited in the wild. The flaw, tracked as CVE-2024-20481, allows… Article Source https://cybersecuritynews.com/cisco-asa-ftd-vpns-vulnerability/
Google Warns of Samsung Zero-Day Exploited in the Wild SecurityWeek Article Source https://www.securityweek.com/google-warns-of-samsung-zero-day-exploited-in-the-wild/
Google Mandiant security analysts warn of a worrying new trend of threat actors demonstrating a better capability to discover and exploit zero-day vulnerabilities in software. Specifically, of the 138 vulnerabilities disclosed as actively… Article Source https://www.bleepingcomputer.com/news/security/google-70-percent-of-exploited-flaws-disclosed-in-2023-were-zero-days/
Two vulnerabilities in NetScaler’s ADC and Gateway products have been fixed – but not before criminals found and exploited them, according to the vendor. CVE-2023-6548 could allow remote code execution (RCE) in the appliances’ management… Article Source https://www.theregister.com/2024/01/18/citrix_netscaler_bugs_attacked/