CVE-2023-20085 - Exploiting XSS in Cisco Identity Services Engine (ISE) – A Step-By-Step Guide
In March 2023, Cisco disclosed CVE-2023-20085, a cross-site scripting (XSS) vulnerability found in their widely-used Identity Services Engine (ISE) web interface. This flaw allows attackers
CVE-2023-20052 - How a Flaw in ClamAV’s DMG DMG Parser Led to Information Disclosure
On February 15, 2023, a serious security vulnerability was published in ClamAV, the popular open-source antivirus engine. Unauthenticated attackers could exploit it remotely, leaking sensitive
CVE-2023-20032 - How a Heap Buffer Overflow in ClamAV Opened the Door to Remote Code Execution
On February 15, 2023, a critical new vulnerability was disclosed in the popular open-source antivirus engine, ClamAV. This vulnerability, tracked as CVE-2023-20032, impacts ClamAV versions
CVE-2022-20952 - How Cisco Secure Web Appliance’s Parsing Flaw Lets Bad Traffic Slip In
In late 2022, a critical vulnerability surfaced in Cisco’s AsyncOS Software powering the Secure Web Appliance (WSA), previously known as the Web Security Appliance.
CVE-2023-20089 - Memory Leak Exploit in Cisco Nexus 900 (ACI Mode) via LLDP Packets
In June 2023, security researchers uncovered a critical flaw—CVE-2023-20089—impacting Cisco Nexus 900 Series Fabric Switches when running in Application Centric Infrastructure (ACI) Mode.
Episode
00:00:00
00:00:00