> TritonInfoSec News
Home / May 22, 2026 / Story
0
#4 BleepingComputer general May 21, 2026 at 13:58 UTC

Max severity Cisco Secure Workload flaw gives Site Admin privileges

By Sergiu Gatlan

AI Summary

Cisco released patches for a maximum-severity vulnerability in Cisco Secure Workload that allows remote attackers to gain Site Admin privileges by exploiting insufficient validation and authentication in the product's REST APIs. This is a critical exposure for enterprises using Secure Workload for zero-trust segmentation, as unauthenticated remote attackers could fully compromise workload policy management. Immediate patching is advised with no known workarounds.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 82.0/100

# More from May 22

  1. 1
    GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension The Hacker News
  2. 2
    Microsoft Warns of Two Actively Exploited Defender Vulnerabilities The Hacker News
  3. 3
    9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros The Hacker News
  4. 5
    Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks The Hacker News
  5. 6
    Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada Krebs on Security
  6. 7
    Hackers bypass SonicWall VPN MFA due to incomplete patching BleepingComputer
  7. 8
    Chinese hackers target telcos with new Linux, Windows malware BleepingComputer
  8. 9
    European authorities take down prolific cybercrime VPN service CyberScoop
  9. 10
    7-Eleven confirms breach after ShinyHunters claims The Record