SDxCentral

Cisco's SD-WAN nightmare continues with fresh root access vulnerability

Customers urged to audit logs and preserve evidence as flaw allows attackers to gain root access by uploading crafted files ...
CSOonline

VMware patches critical access control vulnerability in Aria Automation

VMware has released updates for Aria Automation, its multi-cloud infrastructure automation platform for public, private and hybrid clouds, to fix a critical vulnerability that could allow ...
Infosecurity-magazine.com

High-Severity Access Control Vulnerability Found in Spring WebFlux

A new security loophole has been found in Spring Security’s latest versions. Tracked as CVE-2023-34034, the flaw has a CVSS score of 9.8. Spring Security is an integral part of the Java-based Spring ...
Bleeping Computer

SonicWall warns of critical access control flaw in SonicOS

SonicWall's SonicOS is vulnerable to a critical access control flaw that could allow attackers to gain access unauthorized access to resources or cause the firewall to crash. The flaw has received the ...
CSOonline

Cisco identifies vulnerability in ISE network access control devices

The latest flaw in Cisco Systems Identity Services Engine (ISE), which could expose sensitive information to an attacker, requires rotation of credentials as well as ...
Bleeping Computer

Latest Access Control news

Stolen tokens and compromised devices let attackers reuse trust without breaking authentication. Specops Software explains why identity alone isn't enough and how continuous device verification ...