433 Central Ave., 4th Floor, St. Petersburg, FL 33701 | info@poseidon-us.com | Office: (813) 563-2652

ClamAV Vulnerabilities Affecting Cisco Products: July 2026

Multiple vulnerabilities in ClamAV could allow a remote attacker to cause a denial of service (DoS) condition, interrupting scanning operations. For more information about these vulnerabilities, see the Details section of this advisory. For additional information on these vulnerabilities in ClamAV, see the ClamAV blog.  Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.  Notes: * The Security Impact Rating (SIR) for these vulnerabilities is High for Windows-based platforms only because those platforms run the ClamAV scanning process in a privileged security context. The platforms that are highly impacted include Cisco Secure Endpoint Connector for Windows. * The SIR for these vulnerabilities is Medium on other platforms, including Linux and Mac platforms, because those platforms run the ClamAV scanning process in a lower-privileged security context. The affected platforms include Secure Endpoint Connector for Linux and Mac. * Cisco Secure Endpoint Private Cloud itself is not impacted by these vulnerabilities. However, the Cisco Secure Endpoint Connector software that is distributed from the device is impacted. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-88cFYyxR Security Impact Rating: High CVE: CVE-2026-20213,CVE-2026-20214,CVE-2026-20215,CVE-2026-20216,CVE-2026-20217,CVE-2026-20243,CVE-2026-20244
http://news.poseidon-us.com/TTJQJz

Cisco Catalyst Center Arbitrary File Read Vulnerability

A vulnerability in Cisco Catalyst Center could allow an unauthenticated, remote attacker to read arbitrary files from a restricted container.  This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to read arbitrary files from a restricted container of the affected device. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-catc-file-read-wLH2vf8X Security Impact Rating: High CVE: CVE-2026-20191
http://news.poseidon-us.com/TTJQJc

Army experimenting with mobile business apps

The events are also revealing where industry is building redundant software, the Army said.
http://news.poseidon-us.com/TTJPM2

Army experimenting with mobile business apps

The events are also revealing where industry is building redundant software, the Army said.
http://news.poseidon-us.com/TTJPC9

VA’s top healthcare official is stepping down

As VA’s undersecretary for health, John Bartrum played a leading role in the resumed rollout of its new Electronic Health Record
http://news.poseidon-us.com/TTJNxb

VA’s top healthcare official is stepping down

As VA’s undersecretary for health, John Bartrum played a leading role in the resumed rollout of its new Electronic Health Record
http://news.poseidon-us.com/TTJNxC

VA’s top healthcare official is stepping down

As VA’s undersecretary for health, John Bartrum played a leading role in the resumed rollout of its new Electronic Health Record
http://news.poseidon-us.com/TTJNlw

Iran-Nexus TAG-182 Disseminates MarkiRAT Surveillance Tool

Discover how Iranian-nexus threat cluster TAG-182 uses MarkiRAT malware and fake VPN/media apps to conduct cyber surveillance operations against domestic targets.
http://news.poseidon-us.com/TTJJFF

Netzilo adds runtime governance for AI agents across major platforms

Netzilo has announced expanded AI agent governance and runtime enforcement capabilities for Amazon Bedrock AgentCore and other major AI agent harnesses. As enterprises move AI agents from experimentation into production, agents are becoming a new enterprise edge. They operate across cloud platforms, agent runtimes, orchestration frameworks, developer environments, user devices, mobile phones, and on-premises systems. This expansion creates a new governance challenge: security teams need one consistent way to observe, detect, correlate, and respond to … More → The post Netzilo adds runtime governance for AI agents across major platforms appeared first on Help Net Security.
http://news.poseidon-us.com/TTJG1C

Dawnguard launches platform to automate secure cloud architecture

Dawnguard announced the public launch of its security architecture automation platform, making it available to organizations looking to design, build, and operate secure cloud-native systems from day zero through production. The launch marks the company’s move from enterprise design partnerships into general availability, following a year of platform development and customer validation. Alongside the product launch, Dawnguard announced the opening of its New York City office and an additional $3.3 million in pre-seed funding from … More → The post Dawnguard launches platform to automate secure cloud architecture appeared first on Help Net Security.
http://news.poseidon-us.com/TTJG17