2025-01-06 14:06:13 Pacfic
Active Exploitation of Decade-Old Cisco ASA WebVPN Vulnerability - 2d
Cisco has confirmed active exploitation of a decade-old cross-site scripting (XSS) vulnerability (CVE-2014-2120) in its Adaptive Security Appliance (ASA) software’s WebVPN login page. Unauthenticated, remote attackers can conduct XSS attacks against WebVPN users. Cisco strongly recommends upgrading to a fixed software release to remediate this vulnerability. This vulnerability was originally disclosed in 2014 and has recently been actively exploited.
Exploitation of Old Cisco ASA Vulnerability - 1d
An older Cisco ASA vulnerability, CVE-2014-2120, is being actively exploited in the wild, particularly by the Androxgh0st botnet. While initially considered medium severity, the vulnerability allows Cross-site Scripting (XSS) attacks, enabling attackers to inject malicious scripts and gain unauthorized access. Cisco has updated its advisory, urging users to update vulnerable ASA versions. The Androxgh0st botnet also leverages other vulnerabilities, highlighting the importance of comprehensive patching and security practices.