JVN: Universal Boot Loader(U-Boot)におけるブートコードがコピーされる揮発性メモリに対するアクセス制御が不適切な脆弱性
U-Bootが提供するUniversal Boot Loader(U-Boot)には、ブートコードがコピーされる揮発性メモリに対するアクセス制御が不適切な脆弱性が存在します。
A public proof-of-concept (PoC) exploit has been released for CVE-2026-20127, a maximum-severity zero-day vulnerability in Cisco Catalyst SD-WAN Controller and SD-WAN Manager that has been actively exploited in the wild since at least 2023. Cisco Talos is tracking the threat activity under the cluster UAT-8616, describing it as a “highly sophisticated cyber threat actor” targeting critical infrastructure […]
The post PoC Exploit Released Cisco SD-WAN 0-Day Vulnerability Exploited in the Wild appeared first on Cyber Security News.