Security Bulletins

[logo] SecurityFocus Vulnerabilities   more  xml  hide  
last updated: Mon, 23 Apr 2018 14:54:06 GMT

 2018-04-23 Vuln: Google Android Qualcomm Components Multiple Security Vulnerabilities
Google Android Qualcomm Components Multiple Security Vulnerabilities
 2018-04-23 Vuln: Linux Kernel 'net/netfilter/xt_TCPMSS.c' Denial of Service Vulnerability
Linux Kernel 'net/netfilter/xt_TCPMSS.c' Denial of Service Vulnerability
 2018-04-23 Vuln: Linux Kernel 'net/netlink/af_netlink.c' Local Information Disclosure Vulnerability
Linux Kernel 'net/netlink/af_netlink.c' Local Information Disclosure Vulnerability
 2018-04-23 Vuln: Linux Kernel CVE-2017-8824 Local Privilege Escalation Vulnerability
Linux Kernel CVE-2017-8824 Local Privilege Escalation Vulnerability
  Bugtraq: [SE-2011-01] The origin and impact of vulnerabilities in ST chipsets
[SE-2011-01] The origin and impact of vulnerabilities in ST chipsets

[logo] Yahoo News - Latest News & Headlines   more  xml  hide  
last updated: Mon, 23 Apr 2018 14:40:46 GMT

 Mon, 23 Apr 2018 09:09:19 -0400 The Great Republican Tax Cut Backfire

The Great Republican Tax Cut BackfireDid you have a happy Tax Day? Are you feeling grateful for the Republican tax


 Sun, 22 Apr 2018 11:48:37 -0400 As chemical weapons inspectors reach Douma, Syria claims suspected attack was fake

As chemical weapons inspectors reach Douma, Syria claims suspected attack was fakeThe chemical weapons inspectors reached the city of Douma, now under Russian and Syrian control, two weeks after the suspected attack took place.


 Sun, 22 Apr 2018 17:42:38 -0400 Waffle House Customer Hailed A Hero After Wrestling Rifle Away From Shooter

Waffle House Customer Hailed A Hero After Wrestling Rifle Away From ShooterA 29-year-old man is being hailed as a hero after he single-handedly disarmed


 Sat, 21 Apr 2018 12:23:46 -0400 Suspect in Ocala, Florida school shooting: ‘I want to be put away’

Suspect in Ocala, Florida school shooting: ‘I want to be put away’As students around the country rallied against gun violence on Friday, one student was injured in a shooting at a Florida high school. The suspect spoke to local NBC reporter Matt Lupoli.


 Sun, 22 Apr 2018 03:12:02 -0400 Perez: Democrats' Trump-Russia lawsuit isn't a fundraising stunt

Perez: Democrats' Trump-Russia lawsuit isn't a fundraising stuntDNC Chairman Tom Perez dismisses criticisms of a civil lawsuit filed against the Trump campaign. "Those are almost the precise quotes we heard from the Nixon campaign in 1972."



Cisco Security Advisory   more  xml  hide  
last updated: Mon, 23 Apr 2018 14:45:05 GMT

 Fri, 20 Apr 2018 12:43:39 CDT Cisco Adaptive Security Appliance WebVPN Cross-Site Scripting Vulnerability
A vulnerability in the Login screen of the Clientless SSL VPN (WebVPN) portal of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device.

The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected device. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or allow the attacker to access sensitive browser-based information.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-asawvpn
Security Impact Rating: Medium
CVE: CVE-2018-0242
 Fri, 20 Apr 2018 12:43:38 CDT Cisco ASA Software, FTD Software, and AnyConnect Secure Mobility Client SAML Authentication Session Fixation Vulnerability
A vulnerability in the implementation of Security Assertion Markup Language (SAML) Single Sign-On (SSO) authentication for Cisco AnyConnect Secure Mobility Client for Desktop Platforms, Cisco Adaptive Security Appliance (ASA) Software, and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to establish an authenticated AnyConnect session through an affected device running ASA or FTD Software. The authentication would need to be done by an unsuspecting third party.

The vulnerability exists because there is no mechanism for the ASA or FTD Software to detect that the authentication request originates from the AnyConnect client directly. An attacker could exploit this vulnerability by persuading a user to click a crafted link and authenticating using the company's Identity Provider (IdP). A successful exploit could allow the attacker to hijack a valid authentication token and use that to establish an authenticated AnyConnect session through an affected device running ASA or FTD Software.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-asaanyconnect
Security Impact Rating: High
CVE: CVE-2018-0229
 Thu, 19 Apr 2018 21:07:10 CDT Cisco WebEx Clients Remote Code Execution Vulnerability
A vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx Meetings, and Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute arbitrary code on a targeted system.

The vulnerability is due to insufficient input validation by the Cisco WebEx clients. An attacker could exploit this vulnerability by providing meeting attendees with a malicious Flash (.swf) file via the file-sharing capabilities of the client. Exploitation of this vulnerability could allow arbitrary code execution on the system of a targeted user.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-wbs
Security Impact Rating: Critical
CVE: CVE-2018-0112
 Wed, 18 Apr 2018 16:00:00 CDT Cisco MATE Collector Cross-Site Request Forgery Vulnerability
A vulnerability in the web-based management interface of Cisco MATE Collector could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device.

The vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected device. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious link. A successful exploit could allow the attacker to perform arbitrary actions on a targeted device via a web browser and with the privileges of the user.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-MATE
Security Impact Rating: Medium
CVE: CVE-2018-0259
 Wed, 18 Apr 2018 16:00:00 CDT Cisco Wireless LAN Controller Default Simple Network Management Protocol Community Strings
With new installations of Cisco Wireless LAN Controller Software, the installation scripts create default community strings for Simple Network Management Protocol (SNMP) Version 2 (SNMPv2) and default usernames for SNMP Version 3 (SNMPv3), both allowing for read and write access.

As documented in the Cisco Wireless LAN Controller Configuration Best Practices guide, the SNMP configuration should either be changed or disabled depending on the environmental requirements. If the default community strings and usernames are not changed or disabled, the system is open for read and write access through SNMP.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-wlc
Security Impact Rating: Informational

powered by zFeeder

Reload this page to check for the most recent news updates.

Please read our legal disclaimer for the use of this information.

Stay Secure
Axiom understands how vital the security of your data is to your organization. Please don't hesitate to contact us if you would like a professional assessment of your network infrastructure.
Home Axiom Advisor Security Bulletins