The bugs rate 10 out of 10 on the vulnerability-severity scale, thanks to the ease of exploitation.
As just one symptom, 83 percent of the Top 30 U.S. retailers have vulnerabilities which pose an “imminent” cyber-threat, including Amazon, Costco, Kroger and Walmart.
Three critical security bugs allow for easy privilege escalation to an administrator role.
The Feds have published a Top 25 exploits list, rife with big names like BlueKeep, Zerologon and other notorious security vulnerabilities.
The majority of the bugs in Cisco’s Firepower Threat Defense (FTD) and Adaptive Security Appliance (ASA) software can enable denial of service (DoS) on affected devices.
The company also committed to more transparency about app flaws, with an advisory page aimed at keeping the community better informed of security vulnerabilities.
Gear from Secomea, Moxa and HMS Networks are affected by remote code-execution flaws, researchers warn.
The software giant released patches for four critical vulnerabilities and five different platforms.
The vulnerabilities affect everything from printers to insulin pumps to ICS gear.
A lack of awareness about where and how open-source libraries are being used is problematic, researchers say.