Cisco FXOS and NX-OS Denial of Service Vulnerabilities

Cisco FXOS is the Firepower extensible operating system.Cisco NX-OS is the network operating system for the Cisco Nexus family of Ethernet switches and the MDS family of Fibre Channel storage area network switches. A denial of service vulnerability exists in the implementation of Link Layer...

OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...

OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...

CVE-2018-0395 Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability

A vulnerability in the Link Layer Discovery Protocol LLDP implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition when the device unexpectedly reloads. The vulnerability is due to improper input...

CVE-2018-0395

A vulnerability in the Link Layer Discovery Protocol LLDP implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition when the device unexpectedly reloads. The vulnerability is due to improper input...

Chrome, Firefox, Edge and Safari Plans to Disable TLS 1.0 and 1.1 in 2020

All major web browsers, including Google Chrome, Apple Safari, Microsoft Edge, Internet Explorer, and Mozilla Firefox, altogether today announced to soon remove support for TLS 1.0 20-year-old and TLS 1.1 12-year-old communication encryption protocols. Developed initially as Secure Sockets Layer...

Chrome, Firefox, Edge and Safari Plans to Disable TLS 1.0 and 1.1 in 2020

All major web browsers, including Google Chrome, Apple Safari, Microsoft Edge, Internet Explorer, and Mozilla Firefox, altogether today announced to soon remove support for TLS 1.0 20-year-old and TLS 1.1 12-year-old communication encryption protocols. Developed initially as Secure Sockets Layer...

Adding layer versions with Nutanix fails with error: Failed to execute the script.

When trying to add versions to layers, the task may fail with an error. Failed to execute the script. Unable to perform the operation. The Nutanix server has encountered a failure processing the request 500. Error: internal server error. Details: Error occurred while creating Disk image...

Cisco IOS XE Software Access Control Error Vulnerability

Cisco IOS XE Software is an operating system developed by Cisco for its network devices. An access control error vulnerability exists in the MACsec Key Agreement MKA using Extensible Authentication Protocol-Transport Layer Security EAP-TLS functionality in Cisco IOS XE Software, which arises from...

[SECURITY] Fedora 27 Update: libmad-0.15.1b-26.fc27

MAD is a high-quality MPEG audio decoder. It currently supports MPEG-1 and the MPEG-2 extension to Lower Sampling Frequencies, as well as the so-called MPEG 2.5 format. All three audio layers Layer I, Layer II, and Layer III a.k.a. MP3 are fully implemented...

CVE-2018-15372

A vulnerability in the MACsec Key Agreement MKA using Extensible Authentication Protocol-Transport Layer Security EAP-TLS functionality of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to bypass authentication and pass traffic through a Layer 3 interface of an affected...

Authentication flaw

A vulnerability in the MACsec Key Agreement MKA using Extensible Authentication Protocol-Transport Layer Security EAP-TLS functionality of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to bypass authentication and pass traffic through a Layer 3 interface of an affected...

The vulnerability relates to the implementation of the TLS protocol by the Intel Active Management Technology (AMT) subsystem of the Intel Converged Security and Manageability Engine and the Intel Management Engine. This vulnerability allows a attacker to obtain the TLS session key.

The vulnerability of the TLS protocol implementation of the Intel Active Management Technology AMT microprogramming system, Intel Converged Security and Manageability Engine, and Intel Management Engine is due to the lack of security measures in accordance with TLS standards. Exploiting this...

Unexpected Error editing a layer, "The given key was not present in the dictionary."

You may find yourself unable to edit layers or publish images. These tasks fail in the App Layering Management Console with a cryptic message,"The given key was not present in the dictionary."...

Cisco IOS XE Software NAT SIP ALG Denial of Service Vulnerability

Cisco IOS XE Software is an operating system developed by Cisco for its network devices.Network Address Translation NAT Session Initiation Protocol SP Application Layer Gateway ALG is one of the gateway components. Network Address Translation NAT Session Initiation Protocol SP Application Layer...

+Message App Unable to Validate SSL Server Certificate Vulnerability

+Message App is an APP application. +Message App is unable to validate SSL server certificates, and a man-in-the-middle attack may allow an attacker to eavesdrop on encrypted communications...

Zero Trust Security Architectures - Identity Aware Proxy

By Faraz Siddiqui and Andrew Terranova This is Part 4 of a 5 part blog series. Jump to Part 1: Introduction Jump to Part 2: Network Micro-Segmentation Jump to Part 3: Software Defined Perimeter Jump to Part 5: Akamai's Approach to Zero Trust Introduction In the first part of this blog series, we...

The World’s Most Popular Coding Language Happens to be Most Hackers’ Weapon of Choice

Python will soon be the world’s most prevalent coding language. That’s quite a statement, but if you look at its simplicity, flexibility and the relative ease with which folks pick it up, it’s not hard to see why The Economist recently touted it as the soon-to-be most used language, globally...

Time to Eliminate Traditional VPNs

It is time to stop trusting your endpoints implicitly and reduce the complexity and risk associated with traditional VPN access and flat networks. Varied digital ecosystems, cloud migration, and workforce mobility have created a climate where the network perimeter no longer exists. This is eviden...

CVE-2018-11277

In Snapdragon Automobile, Mobile, Wear in version MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SDA660, the com.qualcomm.embms is a vendor package deployed in the system image which has an inadequat...