Threat Post

Critical Cisco Bug in VPN Routers Allows Remote Takeover

Security researchers warned that at least 8,800 vulnerable systems are open to compromise. A critical security vulnerability in a subset of Cisco Systems’ small-business VPN routers could allow a ...
Bleeping Computer

Cisco fixes critical, high severity pre-auth flaws in VPN routers

Cisco has addressed pre-auth security vulnerabilities impacting multiple Small Business VPN routers and allowing remote attackers to trigger a denial of service condition or execute commands and ...
ZDNet

Cisco warns of critical remote code execution flaws in these small business VPN routers

Cisco is warning customers using its small business routers to upgrade the firmware to fix flaws that could give remote attackers root level access to the devices. The critical flaws affect the Cisco ...
Dark Reading

Cisco ASA, FTD Software Under Active VPN Exploitation

Cisco has rushed a patch for a brute-force denial-of-service (DoS) vulnerability in its VPN that's being actively exploited in the wild. The medium-severity bug (CVE-2024-20481, CVSS 5.8) resides in ...
Bleeping Computer

Cisco won’t fix authentication bypass zero-day in EoL routers

Cisco says that a new authentication bypass flaw affecting multiple small business VPN routers will not be patched because the devices have reached end-of-life (EoL). This zero-day bug (CVE-2022-20923 ...
TechRadar

Cisco issues emergency fix for VPN tool, users told to update now

Cisco has issued an emergency fix for bugs in some of its software which are being actively exploited in the wild. According to a security advisory from the company, the flaw that was patched was ...