Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?
Hackers’ Delight: Two Fresh Cisco Finesse Vulnerabilities Exposed!
Cisco Finesse vulnerabilities have been discovered, with potential for SSRF and stored XSS attacks. The good news? Cisco has released updates to patch these issues. The bad news? You might want to avoid clicking any suspicious links until you update.
Hot Take:
When it rains, it pours: Cisco’s Finesse gets hit with not one, but two vulnerabilities, proving that even tech giants have their not-so-fine moments.
Key Points:
- Two separate vulnerabilities identified in Cisco Finesse.
- CVE-2024-20404: SSRF vulnerability with a CVSS score of 7.2.
- CVE-2024-20405: Stored XSS through RFI vulnerability with a CVSS score of 4.8.
- Both vulnerabilities stem from insufficient validation of user-supplied input.
- Cisco has released software updates to address both issues.
Already a member? Log in here