cr0w@infosec.exchange (@cr0w@infosec.exchange)
Just another analyst chasing squirrels and pretending to know things.
Anything stupid I say can and should be blamed on #AI. I mean, I don't intentionally use AI products, but if the AI snakeoilers can take credit for the things other people produce, they can also take the blame.
Post
-
New Cisco zero-day, this one one discovered by the ASD
Senza categoria@campuscodi "New" might be a bit of a stretch.
Active exploitation of Cisco Catalyst SD-WAN by UAT-8616
Cisco Talos is tracking the active exploitation of CVE-2026-20127, a vulnerability in Cisco Catalyst SD-WAN Controller, formerly vSmart, that allows an unauthenticated remote attacker to bypass authentication and obtain administrative privileges.
Cisco Talos Blog (blog.talosintelligence.com)
After the discovery of active exploitation of the 0-day in the wild, we were able to find evidence that the malicious activity went back at least three years (2023).