Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following advisories and apply the necessary updates:
- SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privesca
- DNA Center Authentication Bypass Vulnerability cisco-sa-20190619-dnac-bypass
- TelePresence Endpoint Command Shell Injection Vulnerability cisco-sa-20190619-tele-shell-inj
- StarOS Denial-of-Service Vulnerability cisco-sa-20190619-staros-asr-dos
- SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privilescal
- SD-WAN Solution Command Injection Vulnerability cisco-sa-20190619-sdwan-cmdinj
- RV110W, RV130W, and RV215W Routers Management Interface Denial-of-Service Vulnerability cisco-sa-20190619-rvrouters-dos
- Prime Service Catalog Cross-Site Request Forgery Vulnerability cisco-sa-20190619-psc-csrf
- Meeting Server CLI Command Injection Vulnerability cisco-sa-20190619-cms-codex
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT National Cyber Alert System https://ift.tt/2X8ZzcY
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.