Public PoC prompts Cisco patch for ISE, ISE-PIC vulnerability

Cisco addressed a medium-severity vulnerability in ISE and ISE-PIC after a public PoC exploit was disclosed. Cisco addressed a medium-severity vulnerability, tracked as CVE-2026-20029 (CVSS score: 4.9), in Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) after a public PoC exploit was disclosed. The vulnerability resides in the licensing feature of Cisco ISE […]

Cisco ISE Vulnerability Enables Access to Sensitive Data

itsecuritynews.info - 08/Jan 17:33

Cisco has disclosed a new XML External Entity (XXE) vulnerability in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector...

Cisco ISE Vulnerability Enables Access to Sensitive Data

itsecuritynews.info - 08/Jan 17:33

Cisco has disclosed a new XML External Entity (XXE) vulnerability in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector...

Palo Alto Networks addressed a GlobalProtect flaw, PoC exists

securityaffairs.co - 15/Jan 11:26

Palo Alto Networks addressed a flaw impacting GlobalProtect Gateway and Portal, for which a proof-of-concept (PoC) exploit exists. Palo Alto Networks...

Cisco warns of Identity Service Engine flaw with exploit code

bleepingcomputer.com - 08/Jan 09:13

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin privileges. [...]

Cisco warns of Identity Service Engine flaw with exploit code

bleepingcomputer.com - 08/Jan 09:13

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin privileges. [...]

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

thecyberthrone.in - 16/Jan 11:47

Cisco has released patches for a maximum-severity AsyncOS vulnerability (CVE-2025-20393) that was actively exploited by a China-linked APT group since...

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

thecyberthrone.in - 16/Jan 11:47

Cisco has released patches for a maximum-severity AsyncOS vulnerability (CVE-2025-20393) that was actively exploited by a China-linked APT group since...

Ni8mare flaw gives unauthenticated control of n8n instances

securityaffairs.co - 07/Jan 21:15

A critical n8n flaw (CVE-2026-21858, CVSS 10.0), dubbed Ni8mare, allows unauthenticated attackers to fully take over vulnerable instances. Researchers...

China-linked APT UAT-9686 abused now patched maximum severity AsyncOS bug

securityaffairs.co - 16/Jan 10:17

Cisco fixed a maximum severity AsyncOS flaw in Secure Email products, previously exploited as a zero-day by China-linked APT group UAT-9686. Cisco...

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

itsecuritynews.info - 13/Jan 12:02

ServiceNow has disclosed details of a now-patched critical security flaw impacting its ServiceNow AI Platform that could enable an unauthenticated...

Rubriques :

Public PoC prompts Cisco patch for ISE, ISE-PIC vulnerability

Articles similaires

Cisco ISE Vulnerability Enables Access to Sensitive Data

Cisco ISE Vulnerability Enables Access to Sensitive Data

Palo Alto Networks addressed a GlobalProtect flaw, PoC exists

Cisco warns of Identity Service Engine flaw with exploit code

Cisco warns of Identity Service Engine flaw with exploit code

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

Ni8mare flaw gives unauthenticated control of n8n instances

China-linked APT UAT-9686 abused now patched maximum severity AsyncOS bug

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

Les derniers communiqués