Cisco has called on the users of its Email Security Appliance and Secure Email and Web Manager appliances with non-default configurations to immediately patch a critical security flaw, tracked as CVE-2022-20798, which could be abused to evade authentication and access the appliances' web management interface, according to BleepingComputer.
"An attacker could exploit this vulnerability by entering a specific input on the login page of the affected device. A successful exploit could allow the attacker to gain unauthorized access to the web-based management interface of the affected device," said Cisco, which noted the flaw's discovery while addressing a Cisco Technical Assistance Center case. Only appliances leveraging external authentication with LDAP are impacted by the security bug, which has not yet been exploited by any threat actor, said Cisco's Product Security Incident Response Team. Impacted appliances could be verified by logging into the web-based management interface and checking whether the "Enable External Authentication" option has a green check box.
Malware-free intrusions have become the leading cybersecurity threat against small- to medium-sized businesses, accounting for 56% of all cyber incidents during the third quarter, SiliconAngle reports.
Four high-severity Microsoft Exchange flaws reported by Trend Micro's Zero Day Initiative were noted by Microsoft to have been addressed or not need immediate servicing as required authentication would significantly reduce their odds of being exploited, SecurityWeek reports.
Email security: The current threat landscape, the latest tools/techniques
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news