CVE-2022-20942 - Exploiting Cisco Email & Web Security - How Weak Authorization Risks Your Enterprise
In late 2022, security researchers uncovered a serious flaw in several Cisco security products’ management interfaces. Known as CVE-2022-20942, this vulnerability puts Cisco Email Security
CVE-2022-20867 - Root-Level SQL Injection in Cisco Email Security Appliance Explained
In June 2022, Cisco published security advisory CVE-2022-20867, revealing a critical weakness in the web-based management interface of Cisco Email Security Appliance (ESA) and Cisco
CVE-2022-20962 - How Hackers Can Take Over Cisco ISE with a Path Traversal Attack
In late 2022, Cisco revealed a major weakness found in their Identity Services Engine (ISE) product, catalogued as CVE-2022-20962. This flaw is about as serious
CVE-2022-20956 - How an Attacker Can Bypass Authorization in Cisco ISE and Access System Files
In October 2022, Cisco published an advisory (Original Reference) about a serious vulnerability impacting their Identity Services Engine (ISE). Known as CVE-2022-20956, this flaw allows
CVE-2022-20958 - How the Cisco BroadWorks CommPilot SSRF Allows Hackers To Peek Inside Your Network
A serious security vulnerability, tracked as CVE-2022-20958, was discovered in the web-based management interface of the Cisco BroadWorks CommPilot application. This issue can let hackers
Episode
00:00:00
00:00:00