Cisco Duo for Windows Logon and RDP Let Attacker Bypass Authentication | allinfosecnews.com

March 7, 2024, 8:11 a.m. | Dhivya

Cyber Security News cybersecuritynews.com

A critical vulnerability, CVE-2024-20301 has been identified in Cisco Duo Authentication for Windows Logon and Remote Desktop Protocol (RDP), posing a security risk to affected systems. This flaw could allow an authenticated, local attacker to bypass secondary authentication mechanisms and gain unauthorized access to Windows devices. The vulnerability stems from a failure to invalidate locally […]

The post Cisco Duo for Windows Logon and RDP Let Attacker Bypass Authentication appeared first on Cyber Security News.

access attacker authentication bypass cisco cisco duo critical critical vulnerability cve cyber security desktop devices duo flaw local logon protocol rdp remote desktop remote desktop protocol risk security security risk systems unauthorized unauthorized access vulnerability windows

More from cybersecuritynews.com / Cyber Security News

Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints Across the Globe 2 hours ago | cybersecuritynews.com

android bsd critical cyber security +23

Operation PANDORA Shutdown 12 Fake Call Centers that Steal Over €10M 5 hours ago | cybersecuritynews.com

10 million a network call call centers +19

CISA & FBI Release Urges Developers to Eliminate Directory Traversal Vulnerabilities 6 hours ago | cybersecuritynews.com

agency alert bureau calling +24

LayerX Security Raises $24M for its Browser Security Platform, Enabling Employees to Work Securely from … 21 hours ago | cybersecuritynews.com

browser browser security capital dell +24

Path Traversal Vulnerability In Popular Android Apps Let Attackers Overwrite Files 22 hours ago | cybersecuritynews.com

aim android android apps android security +26

ArcaneDoor Hackers Who Exploited Cisco Firewall Zero-Days Linked To China 22 hours ago | cybersecuritynews.com

access actor arcanedoor attacks +36

CISA Warns Of Hackers Actively Attacking GitLab Password Reset Vulnerability 22 hours ago | cybersecuritynews.com

access access control agency alert +28

NCSC Warns of Russian Hackers Attacking Critical National Infrastructure 23 hours ago | cybersecuritynews.com

alignment critical critical national infrastructure cyber +19

New macOS Adload Malware Bypasses Built-in macOS Antivirus Detection 1 day, 2 hours ago | cybersecuritynews.com

adload antivirus apple authors +13

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

SITEC- Systems Security Administrator- Camp HM Smith

@ Peraton | Camp H.M. Smith, HI, United States

View on infosec-jobs.com

Cyberspace Intelligence Analyst

@ Peraton | Fort Meade, MD, United States

View on infosec-jobs.com

General Manager, Cybersecurity, Google Public Sector

@ Google | Virginia, USA; United States

View on infosec-jobs.com

Cyber Security Advisor

@ H&M Group | Stockholm, Sweden

View on infosec-jobs.com

Engineering Team Manager – Security Controls

@ H&M Group | Stockholm, Sweden

View on infosec-jobs.com