Cisco Patches Critical Vulnerabilities
1. Cisco fixes critical flaw (CVE-2024-20419) allowing remote password changes in Smart Software Manager On-Prem.
2. Affected Cisco SSM On-Prem versions up to 8-202206; patched in 8-202212.
3. Severe file write flaw (CVE-2024-20401) in Secure Email Gateway lets attackers add root users and crash devices.
4. CVE-2024-20401 impacts Cisco AsyncOS; patched in Content Scanner Tools version 23.3.0.4823+.
5. CISA adds Adobe Commerce XXE (CVE-2024-34102), SolarWinds Path Traversal (CVE-2024-28995), and VMware vCenter permissions (CVE-2022-22948) to KEV catalog.
#cisco #securityflaws #cve202420419 #cve202420401 #adobecommerce #magento #solarwinds #vmware #cybersecurity #cisa #vulnerability #patchupdate #networksecurity #zeroday #cyberthreats #malware #exploit #threatintelligence #infosec #technews