Subscribe

Cisco Warn Customers To Patch CSE Bug

June 16, 2022

Cisco has warned of a critical vulnerability known as CVE-2022-20798 and is asking customers to patch their systems.

The vulnerability was found in the external authentication functionality of the virtual and hardware Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager appliances.

The vulnerability could allow an attacker to bypass authentication and log into the web management interface of Cisco e-mail gateway appliances with non-default configurations.

The security firm reported that the vulnerability was discovered during the resolution of a Cisco TAC (Technical Assistance Center) support case and that no known public exploits or malicious exploits have been found.

Further analysis revealed that the bug only affects devices that are configured to use external authentication and LDAP as the authentication protocol. Cisco explained that the external authentication feature is disabled by default, which means that only devices with non-default configurations are impacted.

Those who cannot install CVE-2022-20798 security updates immediately should use a workaround that disables anonymous binds on the external authentication server.

The sources for this piece include an article in BleepingComputer.

Top Stories

SoftBank sells remaining Nvidia stake to fund $22.5B OpenAI commitment

What a year this has been.

Top 10 reflections on information technology developments in 2025

Spotify says it has identified account behind mass scraping claimed by pirate group

Waymo suspends San Francisco robotaxi service after power outage leaves cars blocking roads

Facial recognition becomes mandatory for new mobile accounts in South Korea

Related Articles

SoftBank sells remaining Nvidia stake to fund $22.5B OpenAI commitment

December 29, 2025 SoftBank Group Corp. has sold its entire remaining stake in Nvidia in hopes to help raise the more...

NIST warns of inaccurate internet time after atomic clock disruption

December 29, 2025 The U.S. National Institute of Standards and Technology (NIST) has warned that several of its Internet Time more...

Critical LangChain flaw exposes secrets across millions of AI agent deployments

December 29, 2025 A critical security flaw has been found in LangChain, one of the most widely used frameworks for more...

Alphabet to buy Intersect Power for $4.75B 

December 29, 2025 Google parent Alphabet said Monday it will acquire data-centre and energy developer Intersect Power in a deal more...

Picture of TND Newsdesk

TND Newsdesk

Picture of TND Newsdesk

TND Newsdesk

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.