#cisco-secure-firewall

[ follow ]
#zero-day-vulnerability-exploitation #ransomware-attacks #healthcare-sector-targeting #threat-intelligence
Information security
fromTheregister
4 days ago

Ransomware crims abused Cisco 0-day weeks before disclosure

Ransomware group Interlock exploited CVE-2026-20131 in Cisco Secure Firewall Management Center for 36 days before Cisco's patch, enabling remote code execution as root on vulnerable devices.
fromSecurityWeek
5 months ago

Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks

Tracked as CVE-2025-20333 (CVSS score of 9.9) and CVE-2025-20362 (CVSS score of 6.5), the bugs impact the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) software. The issues, Cisco explains, exist because user-supplied input in HTTP(S) requests is not properly validated, allowing a remote attacker to send crafted requests and execute arbitrary code with root privileges or access a restricted URL without authentication.
Information security
[ Load more ]