Products tools security

This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco. A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.

Advisory ID:. First Published:. Version 1. Base 6. Fixed Releases At the time of publication, the release information in the following table s was accurate.

This vulnerability was found during internal security testing. Cisco Security Vulnerability Policy. Cross-Site Scripting. Corrected fixed release availability date for Cisco Security Manager. Updated the lists of vulnerable products and products under investigation. Updated the list of vulnerable products. Legal Disclaimer. Affected Products Cisco is investigating its product line to determine which products may be affected by these vulnerabilities.

Cisco Firepower Management Center 1. Cisco Policy Suite 1. Cisco Prime Collaboration Provisioning. Cisco Prime Infrastructure. Cisco Prime Optical for Service Providers. Contact Cisco TAC for upgrade options. Cisco Security Manager 1. Cisco Network Assurance Engine 1. Cisco Expressway Series 1. Updated products under investigation, vulnerable products, and products confirmed not vulnerable.

Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable. In this blog, we discuss our latest innovation toward developing another detection layer focusing on the visual components of brand impersonation attacks. Featured image for Behind the scenes of business email compromise: Using cross-domain threat data to disrupt a large BEC campaign.

Microsoft Defender researchers recently uncovered and disrupted a large-scale business email compromise BEC infrastructure hosted in multiple web services. Attackers used this cloud-based infrastructure to compromise mailboxes via phishing and add forwarding rules, enabling these attackers to get access to emails about financial transactions.

Featured image for How user experience is shaping verifiable credentials and identity. Since , Microsoft has been working with the identity community on two groundbreaking technologies designed from the ground up to make digital privacy convenient and practical: decentralized identifiers and verifiable credentials. We believe verifiable credentials will revolutionize the way we exchange personal information, shifting ownership and control of identity and personal data back to individuals.

Featured image for Business email compromise campaign targets wide range of orgs with gift card scam. Read our investigation of a BEC campaign that used attacker-created email infrastructure to facilitate gift card theft targeting the consumer goods, process manufacturing and agriculture, real estate, discrete manufacturing, and professional services sectors.