CVE-2024-20381 - How Improper JSON-RPC Authorization in Cisco NSO and ConfD Risks Your Network
In June 2024, security researchers disclosed CVE-2024-20381, a critical vulnerability impacting several Cisco products. This issue centers around the JSON-RPC API that’s baked into
CVE-2024-20304 - Remote UDP Packet Memory Exhaustion in Cisco IOS XR’s Mtrace2 Feature – What You Need to Know
A serious vulnerability, identified as CVE-2024-20304, has been discovered in the Multicast Traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software. This flaw could
CVE-2024-20497 - Cisco Expressway-E Vulnerability Explained — How Attackers Can Impersonate Users
A serious security hole was found in Cisco Expressway Edge (Expressway-E) products, tracked as CVE-2024-20497. This bug allows any authenticated remote user—specifically those with
CVE-2024-20439 - The Hidden Backdoor in Cisco Smart Licensing Utility Explained
If you’re running Cisco Smart Licensing Utility (SLU) in your network, there’s a critical security hole you should know about—CVE-2024-20439. This vulnerability
CVE-2024-20375 - How a Bad SIP Message Can Crash Cisco Unified CM — Exploit, Code Samples, and Analysis
CVE-2024-20375 is a newly disclosed vulnerability targeting Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME). If
Episode
00:00:00
00:00:00