Cisco PSIRT

April 18, 2023

SECURITY

Threat Actors Exploiting SNMP Vulnerabilities in Cisco Routers

2 min read

Recent reports and threat intelligence indicate that cyber attackers are exploiting vulnerabilities in legacy Cisco routers and switches that have not been properly upgraded, configured, or updated with the latest software.

March 15, 2022

SECURITY

Cyber Actors Bypassing Two-Factor Authentication Implementations

2 min read

A recent FBI flash bulletin described how cyber actors were able to use the PrintNightmare vulnerability (CVE-2021-34527) and bypass Duo 2FA to compromise an unpatched Windows machine and gain administrative privileges. This did NOT leverage or reveal a vulnerability in Duo.

December 15, 2021

DEVELOPER

What Is Log4j and Why Security Alerts Matter to DevSecOps Teams

3 min read

Learn how a Cisco SecureX automation can alert security operations (DevSecOps) teams when a new critical impact security advisory is published from the Cisco Product Security Incident Response Team (PSIRT).

May 8, 2019

SECURITY

Customers Deserve Transparency to Manage Risk

3 min read

Regardless of how they are found, all vulnerabilities are investigated and publicly reported per our policies.

April 29, 2019

SECURITY

The PSIRT Services Framework: Helping the Industry Protect the Ecosystem

3 min read

At Cisco, our leadership made the decision over twenty four years ago that we would clearly publicly communicate security vulnerabilities or other issues that could potentially expose customers to risk....

September 26, 2018

SECURITY

September 2018 Cisco IOS and IOS XE Software Bundled Publication

1 min read

Today, September 26, 2018, we released the second and final Cisco IOS and IOS XE Software Security Advisory Bundled Publication of 2018.

August 10, 2018

SECURITY

Shining a Light on a New Way to Attack WPA2 Weaknesses

2 min read

Throughout its history, wireless communication has been susceptible to eavesdropping. No matter the WPA standard, there will always be attempts to exploit weaknesses and breach privacy. 

June 22, 2018

SECURITY

Cisco PSIRT Notice About Public Exploitation of the Cisco ASA Web Services Denial of Service Vulnerability

1 min read

With the security of our customers' networks being a top priority, we're actively raising awareness of a vulnerability affecting Cisco ASA Software and Cisco Firepower Threat Defense (FTD) Software.

March 28, 2018

SECURITY

March 2018 Cisco IOS and IOS XE Software Bundled Publication

2 min read

Today, we released the first Cisco IOS and IOS XE Software Security Advisory Bundled Publication of 2018.