US-CERT - Cisco Releases Security Updates for Multiple Products
Original release date: June 19, 2019
from US-CERT: The United States Computer Emergency Readiness Team https://www.us-cert.gov/ncas/current-activity/2019/06/19/Cisco-Releases-Security-Updates-Multiple-Products
Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following advisories and apply the necessary updates:
- SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privesca
- DNA Center Authentication Bypass Vulnerability cisco-sa-20190619-dnac-bypass
- TelePresence Endpoint Command Shell Injection Vulnerability cisco-sa-20190619-tele-shell-inj
- StarOS Denial-of-Service Vulnerability cisco-sa-20190619-staros-asr-dos
- SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privilescal
- SD-WAN Solution Command Injection Vulnerability cisco-sa-20190619-sdwan-cmdinj
- RV110W, RV130W, and RV215W Routers Management Interface Denial-of-Service Vulnerability cisco-sa-20190619-rvrouters-dos
- Prime Service Catalog Cross-Site Request Forgery Vulnerability cisco-sa-20190619-psc-csrf
- Meeting Server CLI Command Injection Vulnerability cisco-sa-20190619-cms-codex
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT: The United States Computer Emergency Readiness Team https://www.us-cert.gov/ncas/current-activity/2019/06/19/Cisco-Releases-Security-Updates-Multiple-Products
Comments
Post a Comment