Cisco

Articles and blog posts that relate to Cisco Systems which is a multinational technology company based in San Jose, California. Founded in 1984 by Leonard Bosack and Sandy Lerner, Cisco is a global leader in networking and cybersecurity solutions. The company designs, manufactures, and sells a wide range of networking hardware, software, and telecommunications equipment.

Cisco’s products and services are essential for building and maintaining internet infrastructure, including routers, switches, firewalls, and wireless access points. Cisco also offers solutions for network security, cloud computing, data centers, and collaboration tools such as Webex for video conferencing.

NewsSecurity Vulnerabilities

Cisco Finesse Remote File Inclusion Vulnerability (CVE-2026-20175)

– A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on an affected device, possibly leading to browser-based attacks.

Read More
NewsSecurity Vulnerabilities

Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities

– Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow a remote attacker to achieve remote code execution or conduct information disclosure attacks on an affected device.

Read More
NewsSecurity Vulnerabilities

Cisco Webex Meetings Cross-Site Scripting Vulnerability (CVE-2026-20233)

– A vulnerability in the web-based user interface of Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. Cisco has addressed this vulnerability in the Webex Meetings service, and no customer action is needed.

Read More
NewsSecurity Vulnerabilities

Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability (CVE-2026-20230)

CVE number – CVE-2026-20230 A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management

Read More
NewsSecurity Vulnerabilities

Cisco Secure Workload Unauthorized API Access Vulnerability (CVE-2026-20223)

– A vulnerability in the access validation of internal REST APIs of Cisco Secure Workload could allow an unauthenticated, remote attacker to access site resources with the privileges of the Site Admin role.

Read More
NewsSecurity Vulnerabilities

Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability (CVE-2026-20182)

– A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to bypass authentication and obtain administrative privileges on an affected system.

Read More
NewsSecurity Vulnerabilities

Cisco Enterprise Chat and Email Lite Agent File Upload Vulnerability (CVE-2026-20172)

– A vulnerability in the Lite Agent feature of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct browser-based attacks.

Read More
NewsSecurity Vulnerabilities

Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities

– Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface.

Read More
NewsSecurity Vulnerabilities

Ongoing campaign exploiting vulnerabilities in Cisco VPN devices

– An attacker attributed to ArcaneDoor campaign has exploited CVE-2025-20333, CVE-2025-20362, and CVE-2025-20363 to install a sophisticated bootkit for persistent stealthy access to affected devices.

Read More
NewsSecurity Vulnerabilities

Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability (CVE-2026-20131)

– A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device.

Read More