Aug 15, 08:40 AM

Cisco Fixes CVSS 10.0 Remote Code Execution Flaw in Secure Firewall Management Center Requiring RADIUS; Xerox Patches FreeFlow Core Bugs

Cisco has addressed a maximum-severity security vulnerability in its Secure Firewall Management Center (FMC) that could allow remote code execution (RCE). The flaw, rated CVSS 10.0, enables attackers to execute commands with high privileges without requiring login credentials, provided that RADIUS authentication is enabled. Cisco has urged users to apply patches promptly as there are no available workarounds. This vulnerability has been widely reported by cybersecurity outlets including The Hacker News, Security Affairs, and CyberScoopNews. Separately, Xerox patched two vulnerabilities in its FreeFlow Core software, including a critical path traversal bug that could also lead to remote code execution, according to Horizon3ai.

#Cisco #Secure Firewall Management Center #The Hacker News #Security Affairs #CyberScoopNews #Xerox #FreeFlow Core #Horizon3ai

Written with ChatGPT (GPT-4).

Cisco Fixes CVSS 10.0 Remote Code Execution Flaw in Secure Firewall Management Center Requiring RADIUS; Xerox Patches FreeFlow Core Bugs

Sources

Additional media

Similar Stories