The New OilJan 19

#Cisco finally fixes #AsyncOS zero-day exploited since November

https://www.bleepingcomputer.com/news/security/cisco-finally-fixes-asyncos-zero-day-exploited-since-november/

#cybersecurity

Cisco finally fixes AsyncOS zero-day exploited since November

​Cisco finally patched a maximum-severity AsyncOS zero-day exploited in attacks targeting Secure Email Gateway (SEG) appliances since November 2025.

BleepingComputer
PressMind LabsJan 16

Cisco ostrzega przed luką w Secure Email Gateway – czas na aktualizację

Czy „bezpieczna” brama e‑mailowa może stać się furtką dla obcych? Cisco właśnie przypomniało, że tak – jeśli dopuścisz do tego konfiguracją.

Czytaj dalej:
https://pressmind.org/cisco-ostrzega-przed-luka-w-secure-email-gateway-czas-na-aktualizacje/

#PressMindLabs #asyncos #cisco #cve202520393 #secureemailgateway #spamquarantine

securityaffairsJan 16
#China-linked #APT UAT-9686 abused now patched maximum severity #AsyncOS bug
https://securityaffairs.com/186985/apt/china-linked-apt-uat-9686-abused-now-patched-maximum-severity-asyncos-bug.html
#securityaffairs #hacking
China-linked APT UAT-9686 abused now patched maximum severity AsyncOS bug

Cisco fixed a critical AsyncOS flaw in Secure Email products, previously exploited as a zero-day by China-linked APT group UAT-9686.

Security Affairs
Tech Cybersecurity NieuwsFeb 7, 2025
Cisco verhelpt kritieke kwetsbaarheden in asyncos software https://www.trendingtech.news/trending-news/2025/02/53603/cisco-verhelpt-kritieke-kwetsbaarheden-in-asyncos-software #Cisco #AsyncOS #kwetsbaarheden #beveiligingsupdate #Secure Web Appliance #Trending #News #Nieuws
Cisco verhelpt kritieke kwetsbaarheden in asyncos software

Cisco heeft onlangs belangrijke updates uitgebracht om kritieke kwetsbaarheden in zijn AsyncOS Software aan te pakken. Deze kwetsbaarheden, die invloed hebben

Tech Nieuws
BSI WID Advisories FeedFeb 6, 2025

#BSI WID-SEC-2025-0276: [NEU] [mittel] #Cisco #AsyncOS, ##Secure #Email #Gateway #und Secure #Web #Appliance: Mehrere Schwachstellen

Ein entfernter anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in Cisco AsyncOS, Cisco Secure Email Gateway und Cisco Secure Web Appliance ausnutzen, um beliebigen Code mit Administratorrechten auszuführen, Root-Rechte zu erlangen, vertrauliche Informationen preiszugeben, Sicherheitsmaßnahmen zu umgehen und einen Cross-Site-Scripting-Angriff durchzuführen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0276

Warn- und Informationsdienst

BSI WID Advisories FeedNov 7, 2024

#BSI WID-SEC-2024-3349: [NEU] [mittel] #Cisco #AsyncOS: Schwachstelle ermöglicht Cross-Site Scripting

Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Cisco AsyncOS, Cisco Secure Email Gateway und Cisco Secure Web Appliance ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen.

https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3349

HostvixJul 17, 2024

Arbitrary File Write vulnerability found in Cisco Secure Email Gateway

https://stackdiary.com/cisco-secure-email-gateway-cve-2024-20401/

#cybersecurity #vulnerability #Cisco #SecureEmail #gateway #malware #protection #infosec #emailsecurity #AsyncOS #AMP #contentfilter #securityupdate #cyberthreat #datasecurity #hacker #exploit #patch #softwareupdate #critical #databreach #emailgateway #networksecurity #systemupdate #cyberattack #threatintel #cyberdefense #ITsecurity #technews #cyberalert #CVE

Arbitrary File Write vulnerability found in Cisco Secure Email Gateway

In a security advisory released on July 17, Cisco disclosed a critical vulnerability in their Secure Email Gateway that could have severe implications for

Stack Diary