"This Bug in Cisco Secure Email Lets Hackers Waltz Past Security Protections"

A vulnerability in Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager could enable threat actors to bypass security measures and log into endpoints with non-default configurations. According to a Cisco advisory, the company discovered the flaw when resolving a support request via Cisco TAC. While it maintains there is no indication of the bug being exploited in the wild, it has now been assigned the CVE-2022-20798 designation. A fix is already available, and users are encouraged to apply it as soon as possible. According to Cisco, it stems from endpoint authentication checks using the Lightweight Directory Access Protocol (LDAP) for external authentication. The issue only affects appliances that use external authentication and LDAP. These features, however, are disabled by default. This article continues to discuss the critical flaw found in Cisco Secure Email and Web Manager that lets attackers bypass authentication. 

TechRadar reports "This Bug in Cisco Secure Email Lets Hackers Waltz Past Security Protections"