CVE-2022-33205 - Command Injection in Abode iota Security Kit’s `/action/wirelessConnect` Puts Smart Homes at Risk
The explosion of smart home devices gives us incredible convenience, but also introduces serious security threats. One recent example is CVE-2022-33205, a set of four
CVE-2022-20807 - Exploiting Cisco Expressway & VCS API Vulnerabilities for File Write and Information Disclosure
In 2022, Cisco disclosed multiple severe vulnerabilities involving the API and web-based interfaces in their flagship video communication platforms: the Cisco Expressway Series and Cisco
CVE-2022-20809 - Deep Dive into Cisco Expressway and VCS API/Web Interface Vulnerabilities
---
Cisco devices form the backbone of communication for organizations around the world. However, even the best products can harbor unexpected security holes. In 2022,
CVE-2022-20777 - Cisco NFVIS VM Escape - How Attackers Break Out From Virtual Machines
Virtualization is supposed to lock things down. It lets us run several virtual machines (VMs) on one piece of hardware, keeping them safely apart. But
CVE-2022-20729 - Exploiting XML Injection in Cisco Firepower Threat Defense (FTD) Software CLI
CVE-2022-20729 describes a serious security flaw in the command-line interface (CLI) of Cisco’s Firepower Threat Defense (FTD) software. This vulnerability allows authenticated, local users
Episode
00:00:00
00:00:00