Sign In

Предупреждения


Cisco Releases Security Updates – 20.02.2018


Cisco has released security updates and 18 Advisory to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

CERT Bulgaria recommends users and administrators to review the Cisco Security Advisory and apply the necessary updates.

·         Linux Kernel IP Fragment Reassembly - Denial of Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180824-linux-ip-fragment

·         Open Container Initiative runc CLI - Privilege Escalation Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190215-runc

·         Cisco Prime Infrastructure - Certificate Validation Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-prime-validation

·         Cisco Prime Collaboration Assurance Software - Unauthenticated Access Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-pca-access

·         Cisco Network Convergence System 1000 Series - TFTP Directory Traversal Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-ncs

·         Cisco HyperFlex Software - Command Injection Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-hyperflex-injection

·         Cisco HyperFlex Software - Unauthenticated Root Access Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-chn-root-access

·         Cisco HyperFlex - Arbitrary StatisticsWrite Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-hyper-write

·         Cisco Hyperflex Stored - Cross-Site Scripting Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-hyper-xss

·         Cisco HyperFlex - Unauthenticated Statistics Retrieval Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-hyper-retrieve

·         Cisco Webex Meetings Online Content -  Injection Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190206-webex-injection

·         Cisco Webex Teams for iOS - Arbitrary File Upload Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-webx-ios-file

·         Cisco SPA112, SPA525, and SPA5x5 Series IP Phones - Certificate Validation Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-ipphone-certs

·         Cisco IP Phone 7800 and 8800 Series Cisco Discovery Protocol and Link Layer Discovery Protocol - Denial of Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-cdp-lldp-dos

·         Cisco IoT Field Network Director - XML External Entity Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-iot-fnd-xml

·         Cisco Firepower Threat Defense Software SSL or TLS - Denial of Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-fpwr-ssltls-dos

·         Cisco Firepower 9000 Series Firepower 2-Port 100G Double-Width Network Module Queue Wedge - Denial of Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-firpwr-dos

·         Cisco Unity Connection - Reflected Cross-Site Scripting Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-cuc-rxss

21/02/2019

NEW VIRUSES RSS
VULNERABILITIES RSS