PT-2025-26180 · Cisco · Cisco Meraki Z Series +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX Firmware affected versions not specified Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: A vulnerability in the Cisco AnyConnect VPN server could allow an unauthenticated, remote...

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway network devices allows a perpetrator to cause service interruptions.

The vulnerability of the Cisco AnyConnect server and the Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway network devices is related to the use of an uninitialized variable. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

PT-2025-14532 · Cisco · Cisco Meraki Z Series +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX and Cisco Meraki Z Series devices versions MX64, MX64W, MX65, MX65W, MX67, MX67C, MX67W, MX68, MX68CW Description: A vulnerability in the Cisco AnyConnect VPN server could allow an authenticated, remote attacker to cause a...

CVE-2024-20499

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. These vulnerabilities are due to insufficie...

CVE-2024-20502

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to insufficient resource management while establishi...

CVE-2024-20509

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...

CVE-2024-20509

CVE-2024-20509 affects Cisco Meraki MX and Z Series Teleworker Gateway devices running Cisco AnyConnect VPN server. The issue arises from weak entropy in VPN authentication handlers and a race condition in the same process, enabling an unauthenticated, remote attacker to hijack an AnyConnect VPN ...

CVE-2024-20499

CVE-2024-20499 describes multiple DoS vulnerabilities in the Cisco AnyConnect VPN server used by Cisco Meraki MX and Z Series Teleworker Gateway devices. The flaws arise from insufficient validation of client-supplied parameters during SSL VPN session establishment, or from inadequate resource ma...

CVE-2024-20500

The CVE-2024-20500 issue affects Cisco Meraki MX and Z Series Teleworker Gateway devices, specifically the Cisco AnyConnect VPN server. Root cause: insufficient resource management when establishing TLS/SSL sessions, enabling an unauthenticated, remote attacker to induce a DoS by sending crafted ...

CVE-2024-20498

CVE-2024-20498 describes multiple DoS vulnerabilities in the Cisco AnyConnect VPN server used by Cisco Meraki MX and Z Series Teleworker Gateway devices. The flaws arise from insufficient validation/resource management while establishing SSL/TLS VPN sessions and handling client-supplied parameter...

Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Denial of Service Vulnerabilities

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition to the AnyConnect VPN service on an affected device. For more information...

PT-2024-18668 · Cisco · Cisco Meraki Z Series Teleworker Gateway +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: A vulnerability in the Cisco AnyConnect VPN server could allow an unauthenticated, remote attacker to cause a DoS condition in t...

CVE-2024-36877

Micro-Star International Z-series motherboards Z590, Z490, and Z790 and B-series motherboards B760, B560, B660, and B460 with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was discovered to contain a write-what-where condition in the in the SW handler for SMI 0xE3. Motherboard's wi...

CVE-2024-36877

Micro-Star International Z-series motherboards Z590, Z490, and Z790 and B-series motherboards B760, B560, B660, and B460 with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was discovered to contain a write-what-where condition in the in the SW handler for SMI 0xE3. Motherboard's wi...

PT-2023-9503 · Cisco · Cisco Meraki Z Series Teleworker Gateway +2

Name of the Vulnerable Software and Affected Versions: Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices affected versions not specified Description: The issue is due to insufficient validation of client-supplied parameters while establishing an SSL VPN session. An attacker cou...

openSUSE Security Update : ucode-intel (openSUSE-2019-1806) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for ucode-intel fixes the following issues : This update contains the Intel QSR 2019.1 Microcode release bsc1111331 Four new speculative execution information leak issues have been identified in Intel CPUs. bsc1111331 - CVE-2018-12126: Microarchitectural Store Buffer Data Sampling MSB...

openSUSE Security Update : ucode-intel (openSUSE-2019-1468) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

This update for ucode-intel fixes the following issues : The Intel CPU Microcode was updated to the official QSR 2019.1 Microcode release bsc1111331 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 ---- new platforms ---------------------------------------- VLV C0 6-37-8/02 00000838 At...

SUSE-SU-2019:1313-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: The Intel CPU Microcode was updated to the official QSR 2019.1 Microcode release bsc1111331 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 ---- new platforms ---------------------------------------- VLV C0 6-37-8/02 00000838 Ato...

Security update for qemu (important)

This update for qemu fixes the following issues: This update has the next round of Spectre v2 related patches, which now integrate with corresponding changes in libvirt. CVE-2017-5715 bsc1068032 The January 2018 release of qemu initially addressed the Spectre v2 vulnerability for KVM guests by...

openSUSE Security Update : qemu (openSUSE-2018-291) (Spectre)

This update for qemu fixes the following issues : This update has the next round of Spectre v2 related patches, which now integrate with corresponding changes in libvirt. CVE-2017-5715 bsc1068032 The January 2018 release of qemu initially addressed the Spectre v2 vulnerability for KVM guests by...