Cisco warns of security holes in its security appliances


Four additional product vulnerabilities, including a high-severity hole in Cisco’s email and web security equipment, have been made known to consumers. For that flaw, known as CVE-2022-20664, the networking behemoth has released a patch.

The security alert, which was released last week and updated yesterday with new information on available software patches, states that “This vulnerability is due to a lack of sufficient input sanitization while requesting the external authentication server.”

Read More…