InfoSecBulletin Cybersecurity for mankind
Cisco has released an urgent security alert for a critical flaw in its Secure Firewall Management Center (FMC) software. The critical flaw with a CVSS score of 10.0 lets remote, unauthenticated attackers execute arbitrary code and take full control of the affected system. This vulnerability is found in Cisco Secure FMC’s web management interface.
The exploit lets an attacker execute any Java code on the operating system. With root privileges, they can take full control of the management device.
India’s Tata Electronics hit by cyber breach: Hacker target 630 GB record
Anthropic’s Mythos reportedly broke NSA classified systems in hours
OpenAI New Method “Deployment Simulation” Predicts AI Risks Before Deployment
AryStinger botnet infected thousands of D-Link routers globally
Hacker suspected of sending alerts across Brazil
CyberSentinel AI features 33 security tools like Nmap, SQLMap, and ZAP, utilizing Claude and GPT
Barracuda hosts Dhaka roundtable on cyber resilience
CISA Alerts Fortinet Users as FortiBleed Affects 86,644 FortiGate Devices
CISA: Splunk flaw under active exploit, patch by Sunday
Texas data breach exposes 3 million driver’s licenses
Cisco Secure Firewall Management Vulnerability
Cisco’s Product Security Incident Response Team (PSIRT) states that there is no evidence of active exploitation of this vulnerability. The flaw affects both Cisco Secure FMC Software and Cisco SCC Firewall Management, regardless of configuration.
Cisco Secure Firewall ASA and FTD software are confirmed not to be vulnerable to this specific issue.
There are no workarounds to address this threat. Organizations need to install the official software updates from Cisco to ensure protection.
Security teams should review the March 2026 Cisco Secure Firewall advisory bundle to fix this and other possible issues.
