Cisco

Cisco warns of a flaw in Nexus 9000 series switches that allows modifying encrypted traffic

Cisco warns of a high-severity vulnerability in Nexus 9000 series switches that can allow attackers to read or modify encrypted traffic. Cisco disclosed a high-severity vulnerability, tracked as CVE-2023-20185 (CVSS Score 7.4), in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode. An unauthenticated, remote attacker can […]

The post Cisco warns of a flaw in Nexus 9000 series switches that allows modifying encrypted traffic appeared first on Security Affairs.

July 7, 2023
0 comment
Read More >>

Researchers released a PoC exploit for CVE-2023-20178 flaw in Cisco AnyConnect Secure

The proof-of-concept (PoC) exploit code for high-severity vulnerability (CVE-2023-20178) in Cisco AnyConnect Secure was published online. A security researcher has published a proof-of-concept (PoC) exploit code for the high-severity vulnerability, tracked as CVE-2023-20178 (CVSS score of 7.8), impacting Cisco AnyConnect Secure Mobility Client and Secure Client for Windows. AnyConnect is a secure remote access VPN […]

The post Researchers released a PoC exploit for CVE-2023-20178 flaw in Cisco AnyConnect Secure appeared first on Security Affairs.

June 22, 2023
0 comment
Read More >>

Cisco fixes privilege escalation bug in Cisco Secure Client

Cisco addressed a high-severity flaw in Cisco Secure Client that can allow attackers to escalate privileges to the SYSTEM account. Cisco has fixed a high-severity vulnerability, tracked as CVE-2023-20178 (CVSS Score 7.8), found in Cisco Secure Client (formerly AnyConnect Secure Mobility Client) that can be exploited by low-privileged, authenticated, local attacker to escalate privileges to […]

The post Cisco fixes privilege escalation bug in Cisco Secure Client appeared first on Security Affairs.

June 8, 2023
0 comment
Read More >>