Ars Technica

Vulnerability in Cisco Smart Software Manager lets attackers change any user password

Cisco on Wednesday disclosed a maximum-security vulnerability that allows remote threat actors with no authentication to change the password of any user, including those of administrators with ...
Bleeping Computer

Cisco fixes VPN DoS flaw discovered in password spray attacks

Cisco fixed a denial of service flaw in its Cisco ASA and Firepower Threat Defense (FTD) software, which was discovered during large-scale brute force attacks against Cisco VPN devices in April. The ...
CSOonline

Cisco patches max-severity flaw allowing arbitrary command execution

Cisco (Nasdaq:CSCO) is urging customers to patch for a maximum-severity flaw affecting its IOS XE Software for Wireless controllers. The flaw, tracked as CVE-2025-20188, received a severity rating of ...
CRN

Cisco Quantum Labs Reveals New Software As Part Of Its ‘Full-Stack’ Networking Approach

The tech giant says that its quantum networking strategy will take a page out of its industry-leading networking portfolio’s book by also adopting a full-stack approach. As part of its forward-looking ...
Dark Reading

Cisco ASA, FTD Software Under Active VPN Exploitation

Cisco has rushed a patch for a brute-force denial-of-service (DoS) vulnerability in its VPN that's being actively exploited in the wild. The medium-severity bug (CVE-2024-20481, CVSS 5.8) resides in ...
Computer Weekly

Cisco pushes update to stop exploitation of two IOS XE zero-days

Cisco has released free software updates to address two vulnerabilities affecting the web user interface (UI) feature of its IOS XE software, which are now available via the Cisco Software Download ...