Cisco Security Vulnerability Thread.
-
Remote access to Sysadmin in Cisco ASR 9000 series.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190417-asr9k-exr
-
Secret access to switches and firewalls. In addition to the sundry less critical flaws.
-
Another remote vulnerability. Just another week in the Cisco world.
-
-
@NashBrydges said in Cisco Security Vulnerability Thread.:
wow
Red Balloon Security researchers have demonstrated physical destruction of Cisco routers by leveraging Thrangrycat via remote exploitation
ouch!
-
@NashBrydges said in Cisco Security Vulnerability Thread.:
Thanks for posting. Saw this headline, but didn't get to actually read the article yet.
-
Looks like that vulnerability is worse than expected.
-
Multiple vulnerabilities patched this month. Make sure you're account is paid up so you can keep everything updated. Or more reasonably toss the gear for something reasonably priced.
At least 1 remote vulnerability, again.
-
LOL
-
@davide-bonavita said in Cisco Security Vulnerability Thread.:
LOL
It's the bi-weekly gift that always gives you so much joy, and extra work to patch.
-
Another remote vulnerability. Just anything that can be managed from a web page this time.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190612-iosxe-csrf
-
They say patch now, and I believe them.
-
CISA, more remote vulnerabilities. Go patch.
-
What? How does this even happen!? Another companies security keys in their equipment.
-
This thread just makes it seem like Cisco is asleep at the wheel. lol
-
@NashBrydges said in Cisco Security Vulnerability Thread.:
This thread just makes it seem like Cisco is asleep at the wheel. lol
This isn't even asleep at the wheel, our interns here do security better than Cisco! This is into actively malicious territory imo.
-
Cisco ASA and FTD Software Cryptographic TLS and SSL Driver Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190710-asa-ftd-dos
Only a few ASA-5500 models affected this time.
-
All your signs are belong to us: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190717-cvdsd-wmauth
Plus the normal plethora: https://tools.cisco.com/security/center/publicationListing.x
-
Cisco Systems has agreed to settle a whistleblower’s claim that it improperly sold video surveillance software with known vulnerabilities to US federal and state governments
-
ZDNet: Patch now: Cisco IOS XE routers exposed to rare 10/10-severity security flaw.
https://www.zdnet.com/article/patch-now-cisco-ios-xe-routers-exposed-to-rare-1010-severity-security-flaw/Been a little busy with new job and big changes in my personal life. I've missed a BUNCH of things that should be here. This is one of those that you can't ignore tho.