all InfoSec news logo
all InfoSec news - The InfoSec & Cyber news aggregator
Sign in Sign up
all InfoSec news

Critical Flaw in Cisco Secure Email and Web Manager Lets Attackers Bypass Authentication

Add to bookmarks

Web: https://thehackernews.com/2022/06/critical-flaw-in-cisco-secure-email-and.html

June 20, 2022, 5:11 a.m. | noreply@blogger.com (Ravie Lakshmanan)

The Hacker News thehackernews.com

Cisco on Wednesday rolled out fixes to address a critical security flaw affecting Email Security Appliance (ESA) and Secure Email and Web Manager that could be exploited by an unauthenticated, remote attacker to sidestep authentication.
Assigned the CVE identifier CVE-2022-20798, the bypass vulnerability is rated 9.8 out of a maximum of 10 on the CVSS scoring system and stems from improper

attackers authentication bypass cisco cisco secure critical email flaw manager secure web

Visit resource

More from thehackernews.com / The Hacker News

TikTok Assures U.S. Lawmakers it's Working to Safeguard User Data From Chinese Staff 18 hours ago | thehackernews.com
chinese data lawmakers staff +3
Google Improves Its Password Manager to Boost Security Across All Platforms 19 hours ago | thehackernews.com
google manager password password manager +2
Microsoft Warns About Evolving Capabilities of Toll Fraud Android Malware Apps 19 hours ago | thehackernews.com
android android malware apps fraud +3
CISA Warns of Active Exploitation of 'PwnKit' Linux Vulnerability in the Wild 1 day, 7 hours ago | thehackernews.com
active cisa exploitation linux +2
New 'SessionManager' Backdoor Targeting Microsoft IIS Servers in the Wild 1 day, 7 hours ago | thehackernews.com
backdoor iis microsoft new +2
Solving the indirect vulnerability enigma - fixing indirect vulnerabilities without breaking your dependency tree 1 day, 12 hours ago | thehackernews.com
dependency vulnerabilities vulnerability
Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers 1 day, 14 hours ago | thehackernews.com
campaign cryptomining linux malware +4
Amazon Quietly Patches 'High Severity' Vulnerability in Android Photos App 1 day, 16 hours ago | thehackernews.com
amazon android app patches +3
North Korean Hackers Suspected to be Behind $100M Horizon Bridge Hack 1 day, 18 hours ago | thehackernews.com
bridge hack hackers horizon +1

Latest InfoSec / Cyber Security Jobs

View more jobs Post a job on infosec-jobs.com

Collection Network Penetration Test Engineer TS SCI/Poly Eligible

@ Sixgen Inc. | United States
View on infosec-jobs.com

Senior Infrastructure Security Engineer

@ Angi | Toronto, ON - Remote
View on infosec-jobs.com

Senior Security Operations Engineer

@ Axiom Zen | Remote
View on infosec-jobs.com

Endpoint Protections - Security Research Engineer II

@ Elastic | United States
View on infosec-jobs.com

Senior Cyber Security Engineer

@ Evaluate | London, England, United Kingdom
View on infosec-jobs.com

Device Security Lead

@ Worldcoin | Berlin ; Erlangen ; New York ; San Francisco
View on infosec-jobs.com