Cisco — FreeIntelHub

Cisco Advisories Vulnerability Disclosure Cisco Mar 3

Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN...

T1556 T1598

Cisco Advisories →

Infosecurity Magazine Zero-Day Cisco Feb 26

Global Cyber Agencies Urge Immediate Patching of Cisco SD-WAN Zero Day

The US and allies are urging Cisco Catalyst SD-WAN customers to hunt for signs of exploitation

Infosecurity Magazine →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco SD-WAN Software Privilege Escalation Vulnerabilities

Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to gain elevated privileges. These vulnerabilities ...

T1548

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco UCS Manager Software Privilege Escalation Vulnerability

A vulnerability in the NX-OS CLI privilege levels of Cisco UCS Manager Software could allow an authenticated, local attacker with read-only privileges to mod...

T1548 T1598

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco FXOS and UCS Manager Software Command Injection Vulnerability

A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Manager Software could allow an authenticated, local attacker with...

T1059

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco Application Policy Infrastructure Controller Denial of Service Vulnerability

A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, local attacker t...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability

A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LL...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco Nexus 9000 Series Fabric Switches in ACI Mode Denial of Service Vulnerability

A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) c...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authenticate...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco Nexus 3600 and 9500-R Series Switching Platforms Layer 2 Loop Denial of Service Vulnerability

A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 Platform Switches and Cisco Nexus 9500-R Series Switching ...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 26

Cisco FXOS and UCS Manager Software Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Manager Software could allow an authenticated, remote attacker to ...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 25

Cisco UCS Manager Software Command Injection Vulnerability

A vulnerability in the CLI and web-based management interface of Cisco UCS Manager Software could allow an authenticated, remote attacker with valid administ...

T1059

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 20

Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability

A vulnerability in the Dynamic Vectoring and Streaming (DVS) Engine implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an un...

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 13

Cisco Unified Communications Products Remote Code Execution Vulnerability

A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco...

T1190

Cisco Advisories →

Cisco Advisories Advisory Cisco Feb 12

Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities

Multiple Cisco products are affected by vulnerabilities in the HTTP Multipurpose Internet Mail Extensions (MIME) Decoder that could allow an unauthenticated,...

T1498

Cisco Advisories →

Cisco Advisories Vulnerability Disclosure Cisco Feb 12

Cisco TelePresence Collaboration Endpoint Software and RoomOS Software Denial of Service Vulnerability

A vulnerability in the text rendering subsystem of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an unauthent...

T1498

Cisco Advisories →

Cisco Advisories Advisory Cisco Feb 11

Multiple Cisco Products Snort 3 Distributed Computing Environment/Remote Procedure Call Vulnerabilities

Multiple Cisco products are affected by vulnerabilities in the processing of Distributed Computing Environment Remote Procedure Call (DCE/RPC) requests that ...

Cisco Advisories →

Zero Day Initiative CVE Cisco Jan 28

ZDI-26-046: Cisco Snort _bnfa_search_csparse_nfa Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco Snort. Authentication is not required to exploit this...

T1190 1 IOC

Zero Day Initiative →

Zero Day Initiative CVE Cisco Jan 28

ZDI-26-045: Cisco Snort _bnfa_search_csparse_nfa Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Cisco Snort. Authentication is not required to expl...

1 IOC

Zero Day Initiative →