CVE-2023-20178 - Escalating to SYSTEM via Cisco AnyConnect Windows Client Update
CVE-2023-20178 is a critical privilege escalation vulnerability that affects the update process in both Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure
CVE-2023-20105 - How an Authenticated Read-Only User Can Become Admin on Cisco Expressway and VCS
Published: June 2023
TL;DR
CVE-2023-20105 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). This security issue lets anyone with a simple
CVE-2023-20006 - Breaking Down the Cisco ASA & FTD Hardware SSL/TLS DoS Vulnerability
In late 2023, Cisco disclosed CVE-2023-20006 — a critical vulnerability impacting the hardware-powered SSL/TLS cryptography of the Cisco Firepower 210 Series. This bug can let
CVE-2023-20108 - Crashing Cisco Unified CM IM&P Authentication with Simple Crafted Requests
If you’re managing Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), you need to know about CVE-2023-20108. This vulnerability
CVE-2023-20192 - How Read-Only Cisco Admins Can Escalate to Full Control (Exclusive Deep Dive)
---
Overview
In June 2023, Cisco quietly patched serious privilege escalation vulnerabilities targeting their Expressway Series and TelePresence Video Communication Server (VCS) products. Labeled CVE-2023-20192,
Episode
00:00:00
00:00:00