CVE-2023-20230 - Breaking Cisco APIC’s Security Barriers – How Improper Access Control Lets Attackers Jump Security Domains
Modern data centers rely on robust separation between tenants and security groups to protect sensitive data and operations. Cisco Application Policy Infrastructure Controller (APIC) is
CVE-2023-20211 - SQL Injection Vulnerability in Cisco Unified Communications Manager
In June 2023, Cisco revealed a critical security vulnerability identified as CVE-2023-20211 affecting the web-based management interface of Cisco Unified Communications Manager (Unified CM) and
CVE-2023-20224 - Privilege Escalation in Cisco ThousandEyes Enterprise Agent – What You Need To Know
---
Introduction
In March 2023, Cisco disclosed CVE-2023-20224 – a privilege escalation vulnerability in the Command-Line Interface (CLI) of Cisco ThousandEyes Enterprise Agent, specifically the Virtual
CVE-2023-20232 - Cisco Unified CCX Tomcat Flaw Enables Web Cache Poisoning Attack
In April 2023, a serious web cache poisoning vulnerability was reported in Cisco Unified Contact Center Express (Unified CCX), referenced as CVE-2023-20232. This vulnerability is
CVE-2023-20214 - How a REST API Flaw in Cisco SD-WAN vManage Exposed Configurations
In June 2023, Cisco announced a major vulnerability—CVE-2023-20214—in its SD-WAN vManage software REST API. This isn’t just another hard-to-exploit bug. For organizations
Episode
00:00:00
00:00:00