Security Bulletin

AI threat research is a fundamental part of Cisco’s approach to AI security. Our roundups highlight new findings from both original and third-party sources.

Today Cisco and NVIDIA announced a mutual intent to expand a partnership that brings together two of the industry’s most innovative data center networking and compute leaders. Our collaboration will help enterprises accelerate AI projects and make it...

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-49035 Microsoft Partner Center Improper Access Control Vulnerability CVE-2023-34192 Synacor Zimbra Collaboration...

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Rockwell Automation Equipment: PowerFlex 755 Vulnerability: Cleartext Transmission of Sensitive Information 2. RISK EVALUATION Successful...

CISA released two Industrial Control Systems (ICS) advisories on February 25, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-056-01 Rockwell Automation PowerFlex...

Nearly a third of organizations have an operational system connected to the Internet with a known exploited vulnerability, as attacks by state and non-state actors increase.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Customers can now sign data and validate signatures using FIPS 204 and FIPS 205 compliant post-quantum cryptography.

Standard SecOps training is no longer enough to tackle modern cybersecurity challenges. People need to develop nontraditional skills.

A patch bypass for a bug in the popular desktop emulator enables root-level privilege escalation and has no fix in sight.