ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Cisco Security Vulnerability Thread.

    News
    cisco security
    14
    91
    12.4k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DashrenderD
      Dashrender @NashBrydges
      last edited by

      @NashBrydges said in Cisco Security Vulnerability Thread.:

      https://www.businesswire.com/news/home/20190513005742/en/Red-Balloon-Security-Discovers-Critical-Vulnerability-Millions

      wow

      Red Balloon Security researchers have demonstrated physical destruction of Cisco routers by leveraging Thrangrycat via remote exploitation

      ouch!

      1 Reply Last reply Reply Quote 0
      • travisdh1T
        travisdh1 @NashBrydges
        last edited by

        @NashBrydges said in Cisco Security Vulnerability Thread.:

        https://www.businesswire.com/news/home/20190513005742/en/Red-Balloon-Security-Discovers-Critical-Vulnerability-Millions

        Thanks for posting. Saw this headline, but didn't get to actually read the article yet.

        1 Reply Last reply Reply Quote 0
        • NashBrydgesN
          NashBrydges
          last edited by

          Looks like that vulnerability is worse than expected.

          https://www.bleepingcomputer.com/news/security/cisco-upgrades-remote-code-execution-flaws-to-critical-severity/

          1 Reply Last reply Reply Quote 1
          • travisdh1T
            travisdh1
            last edited by

            Multiple vulnerabilities patched this month. Make sure you're account is paid up so you can keep everything updated. Or more reasonably toss the gear for something reasonably priced.

            At least 1 remote vulnerability, again.

            https://www.us-cert.gov/ncas/current-activity/2019/06/05/Cisco-Releases-Security-Updates-Multiple-Products

            1 Reply Last reply Reply Quote 0
            • davide.bonavitaD
              davide.bonavita
              last edited by

              LOL

              travisdh1T 1 Reply Last reply Reply Quote 0
              • travisdh1T
                travisdh1 @davide.bonavita
                last edited by

                @davide-bonavita said in Cisco Security Vulnerability Thread.:

                LOL

                It's the bi-weekly gift that always gives you so much joy, and extra work to patch.

                1 Reply Last reply Reply Quote 0
                • travisdh1T
                  travisdh1
                  last edited by

                  Another remote vulnerability. Just anything that can be managed from a web page this time.

                  https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190612-iosxe-csrf

                  1 Reply Last reply Reply Quote 0
                  • travisdh1T
                    travisdh1
                    last edited by

                    They say patch now, and I believe them.

                    https://www.zdnet.com/article/cisco-critical-flaw-warning-these-two-bugs-in-our-data-center-gear-need-patching-now/

                    1 Reply Last reply Reply Quote 0
                    • travisdh1T
                      travisdh1
                      last edited by

                      CISA, more remote vulnerabilities. Go patch.

                      https://www.us-cert.gov/ncas/current-activity/2019/06/26/cisco-releases-security-updates-data-center-network-manager

                      1 Reply Last reply Reply Quote 0
                      • travisdh1T
                        travisdh1
                        last edited by

                        What? How does this even happen!? Another companies security keys in their equipment.

                        https://www.zdnet.com/article/seriously-cisco-put-huawei-x-509-certificates-and-keys-into-its-own-switches/

                        1 Reply Last reply Reply Quote 0
                        • NashBrydgesN
                          NashBrydges
                          last edited by

                          This thread just makes it seem like Cisco is asleep at the wheel. lol

                          travisdh1T 1 Reply Last reply Reply Quote 0
                          • travisdh1T
                            travisdh1 @NashBrydges
                            last edited by

                            @NashBrydges said in Cisco Security Vulnerability Thread.:

                            This thread just makes it seem like Cisco is asleep at the wheel. lol

                            This isn't even asleep at the wheel, our interns here do security better than Cisco! This is into actively malicious territory imo.

                            1 Reply Last reply Reply Quote 0
                            • travisdh1T
                              travisdh1
                              last edited by

                              Cisco ASA and FTD Software Cryptographic TLS and SSL Driver Denial of Service Vulnerability

                              https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190710-asa-ftd-dos

                              Only a few ASA-5500 models affected this time.

                              1 Reply Last reply Reply Quote 0
                              • travisdh1T
                                travisdh1
                                last edited by

                                All your signs are belong to us: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190717-cvdsd-wmauth

                                Plus the normal plethora: https://tools.cisco.com/security/center/publicationListing.x

                                1 Reply Last reply Reply Quote 0
                                • nadnerBN
                                  nadnerB
                                  last edited by

                                  https://www.itnews.com.au/news/cisco-whistleblower-gets-first-false-claims-payout-over-cyber-security-528963

                                  Cisco Systems has agreed to settle a whistleblower’s claim that it improperly sold video surveillance software with known vulnerabilities to US federal and state governments

                                  1 Reply Last reply Reply Quote 1
                                  • travisdh1T
                                    travisdh1
                                    last edited by travisdh1

                                    ZDNet: Patch now: Cisco IOS XE routers exposed to rare 10/10-severity security flaw.
                                    https://www.zdnet.com/article/patch-now-cisco-ios-xe-routers-exposed-to-rare-1010-severity-security-flaw/

                                    Been a little busy with new job and big changes in my personal life. I've missed a BUNCH of things that should be here. This is one of those that you can't ignore tho.

                                    1 Reply Last reply Reply Quote 0
                                    • travisdh1T
                                      travisdh1
                                      last edited by

                                      https://www.zdnet.com/article/cisco-warning-these-routers-running-ios-have-9-910-severity-security-flaw/

                                      1 Reply Last reply Reply Quote 0
                                      • scottalanmillerS
                                        scottalanmiller
                                        last edited by

                                        https://www.zdnet.com/google-amp/article/cisco-these-wi-fi-access-points-are-easily-owned-by-remote-hackers-so-patch-now/

                                        1 Reply Last reply Reply Quote 1
                                        • RojoLocoR
                                          RojoLoco
                                          last edited by

                                          Spotted online today:

                                          cisco security.png

                                          travisdh1T 1 Reply Last reply Reply Quote 1
                                          • travisdh1T
                                            travisdh1 @RojoLoco
                                            last edited by

                                            @RojoLoco said in Cisco Security Vulnerability Thread.:

                                            Spotted online today:

                                            cisco security.png

                                            Please tell me you have the link to send me? I have to post on that one!

                                            travisdh1T 1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 3
                                            • 4
                                            • 5
                                            • 4 / 5
                                            • First post
                                              Last post