Skip to main content

A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) of the RAVPN service.

A significant IT outage has impacted global institutions, including banks, media outlets, airlines, and emergency services. While the precise cause is under investigation, initial reports link the outage to issues with Microsoft PC operating systems.

Cisco disclosed three vulnerabilities in its management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software product.

VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially leading to remote code execution.

Android Pixel contains a privilege escalation vulnerability that allows an attacker to interrupt a factory reset triggered by a device admin app.

This vulnerability is a remote-control execution vulnerability affecting Microsoft SharePoint Server. The vulnerability was assigned a CVSSv3 score of 7.2 and could allow an authenticated site owner to execute code on an affected SharePoint Server.