CVE-2022-20871 - How a Command Injection Flaw in Cisco Secure Web Appliance Lets Attackers Become Root
In June 2022, a critical vulnerability—CVE-2022-20871—was disclosed in the web management interface of Cisco AsyncOS for Cisco Secure Web Appliance (previously known as
CVE-2022-20939 - How a Log File Bug in Cisco Smart Software Manager On-Prem Lets Attackers Become System Admin
In late 2022, Cisco announced a critical security issue in its Smart Software Manager On-Prem (Cisco SSM On-Prem) product. Tracked as CVE-2022-20939, this vulnerability made
CVE-2023-20004 - Breaking Down the Cisco TelePresence CE & RoomOS Local File Overwrite Vulnerabilities
In early 2023, Cisco disclosed a set of vulnerabilities affecting the CLI (Command-Line Interface) of Cisco TelePresence CE and RoomOS. Tracked as CVE-2023-20004, these flaws
CVE-2023-20036 - Cisco IND Device Pack Upload Vulnerability and Exploitation Guide
Early in 2023, security researchers revealed a serious vulnerability in the web user interface (UI) of Cisco Industrial Network Director (IND). This flaw, now tracked
CVE-2023-20039 - Understanding the Cisco IND Local File Disclosure Flaw (With Exploit Example)
In early 2023, Cisco quietly patched a vulnerability—now tracked as CVE-2023-20039—in their Industrial Network Director (IND) software. This bug allowed any local, authenticated
Episode
00:00:00
00:00:00