Product
critical
advisory
Multiple Vulnerabilities in Cisco Products Allow for Remote Code Execution
2 rules 4 TTPs 3 CVEsMultiple vulnerabilities in Cisco ASA, Secure Firewall Threat Defense, IOS, IOS XE, and IOS XR allow a remote attacker to bypass authentication and execute arbitrary code with administrator privileges.
ASA +4
cisco
vulnerability
rce
authentication-bypass
2r
4t
3c
high
advisory
Outbound SMB Traffic Detection
2 rules 1 TTPThis analytic detects outbound SMB connections from internal hosts to external servers, potentially indicating lateral movement and credential theft attempts.
Secure Firewall Threat Defense +4
network
smb
lateral-movement
privilege-escalation
2r
1t