.png?width=200&height=59&name=IPTellogo-byline-2020-dark-v2-pnd-optimised-500%20(1).png "IPTellogo-byline-2020-dark-v2-pnd-optimised-500 (1)")
A wave of patches is coming, and this one is worth paying attention to.
In April 2026, Anthropic launched Project Glasswing, an initiative using a frontier AI model (Claude Mythos) to hunt for security flaws in the world's most critical software. Cisco is one of around fifty partner organisations involved, alongside the likes of AWS, Microsoft, Google and the Linux Foundation. In its first month, the project flagged thousands of high and critical severity vulnerability candidates. After human validation, well over a thousand turned out to be real, exploitable flaws. More than 10,000 have now been identified across the programme.
These findings are now flowing out typically 90 days from discovery, or around 45 days once a patch exists. For Cisco customers, that means a steady stream of advisories and software updates landing over the coming months. The question isn't whether you'll need to patch. It's whether your environment is ready to absorb it.
ASSOCIATED BLOGS:
The Real Problem: Finding Now Outpaces Fixing
Here's what's changed. AI can now find vulnerabilities far faster than most organisations can patch them. That gap is the risk. The old model (wait for an advisory, schedule a change window, collect approvals, deploy weeks later) was built for an era when attackers needed months to weaponise a flaw. That window is now measured in hours.
So the real exposure isn't the patch itself. It's the time between an advisory dropping and your fleet actually being updated. Shrinking that window is the whole game.
ASSOCIATED BLOGS:
Catalyst Center: See What's Actually Exposed
You can't patch what you can't see. This is where Catalyst Center earns its place.
Its Security Advisories tool scans your device inventory against Cisco PSIRT (Product Security Incident Response Team) advisories and tells you exactly which switches, routers and wireless controllers are affected, matching live software versions against each advisory rather than leaving you to cross-reference spreadsheets by hand. Vulnerability compliance highlights the high-priority devices first, and EOX (End-of-Life/End-of-Sale) tracking flags the kit that can't be patched and needs a different plan.
Pro-Tip: The Security Advisories tool relies on the Machine Reasoning package, and you can configure Catalyst Center to notify you the moment a new advisory bundle is available. Worth switching on now before the wave, not during it.
ASSOCIATED BLOGS:
Catalyst Center: Automate the Response
.png?width=240&height=240&name=Cisco%20DNA%20Center%20First%20Look%20(Ingragram).png)
Visibility is half the job. The other half is closing the gap quickly and safely.
Catalyst Center's Software Image Management (SWIM) lets you define a golden image, a validated, compliant software version for each device type, then push it out at scale. Compliance checks run automatically, so drift is caught without anyone going looking for it. And after each upgrade, Catalyst Center runs post-checks (CPU, route summary, and the like) to confirm the network state hasn't changed. That's the difference between patching at machine speed and patching with confidence.
ASSOCIATED BLOGS:
Readiness Is the Hard Part
Here's the honest bit: the platform doesn't deliver the outcome on its own. We see the same gaps repeatedly across Australian organisations. No golden-image baseline defined, change processes still built around manual, weeks-long windows, and automation that's never been tested under pressure. When the advisories start landing, those gaps are what slow you down.
Getting ready isn't a one-evening job. It's defining your golden images, tightening your change processes so approvals don't become the bottleneck, and running Assurance across Catalyst Center so you can trust that an automated push won't take something down.
ASSOCIATED BLOGS:
How IPTel Helps
This is exactly the work our engineers do. We help you accelerate change processes so patching keeps pace with disclosure, run Assurance across your Catalyst Center environment so your baselines and automation are sound, and stand alongside your team as the patch wave hits. Not just to advise, but to do the work with you.
ASSOCIATED BLOGS:
Project Glasswing: The Summary
The patch wave is coming, and the window to act on each advisory is shrinking. Catalyst Center already gives you the tools to see what's exposed and automate the fix. The value is in having it configured, tested and ready before you need it.
Need Help?
We're offering Catalyst Center readiness sessions with one of our senior engineers: a focused review of your current environment, your patching readiness, and where we can support you through the wave ahead. To book yours, get in touch with the IPTel team.
ASSOCIATED BLOGS: