Cisco has released security updates for a high-severity Webex vulnerability that allows unauthenticated attackers to gain client-side remote code execution using malicious meeting invite links. Tracked as CVE-2025-20236, this security flaw was found in the Webex custom URL parser and can be exploited by tricking users into downloading arbitrary files, which lets threat actors execute … Read more
Last Updated on: 26th March 2025, 03:02 pm Businesses must adopt reliable, secure, and scalable technology solutions to remain competitive. Cisco, a global leader in networking and IT infrastructure, offers a suite of products and services that can significantly enhance business operations. From secure networking and cloud solutions to collaboration tools and cybersecurity, implementing Cisco … Read more
Attackers have started targeting Cisco Smart Licensing Utility (CSLU) instances unpatched against a vulnerability exposing a built-in backdoor admin account. The CSLU Windows application allows admins to manage licenses and linked products on-premises without connecting them to Cisco’s cloud-based Smart Software Manager solution. Cisco patched this security flaw (tracked as CVE-2024-20439) in September, describing it … Read more
Cisco has patched a denial of service (DoS) vulnerability that lets attackers crash the Border Gateway Protocol (BGP) process on IOS XR routers with a single BGP update message. IOS XR runs on the company’s carrier-grade, Network Convergence System (NCS), and Carrier Routing System (CRS) series of routers, such as the ASR 9000, NCS 5500, and 8000 series. This high-severity flaw … Read more
Cisco warn of new vulnerability in Webex for BroadWorks The flaw allowed threat actors to steal sensitive files remotely A fix was already deployed, and users should update immediately Cisco has warned Webex for BroadWorks users of a vulnerability that could allow threat actors to access sensitive data remotely. Cisco Webex for BroadWorks is a … Read more
Cisco warned customers today of a vulnerability in Webex for BroadWorks that could let unauthenticated attackers access credentials remotely. Webex for BroadWorks integrates Cisco Webex’s video conferencing and collaboration features with the BroadWorks unified communications platform. While the company has yet to assign a CVE ID to track this security issue, Cisco says in a Tuesday … Read more
CISA has warned US federal agencies to secure their systems against attacks exploiting vulnerabilities in Cisco and Windows systems. While the cybersecurity agency has tagged these flaws as actively exploited in the wild, it has yet to provide specific details regarding this malicious activity and who is behind it. The first flaw (tracked as CVE-2023-20118) … Read more
China’s Salt Typhoon hackers are still actively targeting telecoms worldwide and have breached more U.S. telecommunications providers via unpatched Cisco IOS XE network devices. Recorded Future’s Insikt Group threat research division states that the Chinese hacking group (tracked Salt Typhoon and RedMike) has exploited the CVE-2023-20198 privilege escalation and CVE-2023-20273 Web UI command injection vulnerabilities. … Read more
After markets closed, Cisco Systems (CSCO) added 5% to its stock price. CSCO stock should rise this morning after posting strong results. The telecom giant reported revenue of $13.99 billion, up by 9.4% Y/Y. Revenue guidance of up to $14.1 billion for FY 2025 is above Wall Street’s estimates. In addition, Cisco increased … Read more
Shares of Cisco Systems (CSCO) are up 7% after the networking hardware maker reported financial results that beat analysts’ consensus forecasts. For its fiscal second quarter, Cisco reported earnings per share (EPS) of $0.94 U.S., which came in ahead of consensus estimates of $0.91 U.S. Revenue of $13.99 billion U.S. beat the … Read more