Cisco Releases Security Updates for Multiple Products
Affected platforms
The following platforms are known to be affected:
A wide range of Cisco products, please refer to advisories linked below for more information.
Threat details
Introduction
Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
Remediation advice
Organisations are encouraged to review the following Cisco Advisories and apply the necessary updates:
Cisco ACI Multi-Site Orchestrator Application Services Engine Deployment Authentication Bypass Vulnerability cisco-sa-mso-authbyp-bb5GmBQv
Cisco Application Services Engine Unauthorized Access Vulnerabilities cisco-sa-case-mvuln-dYrDPC6w
Cisco NX-OS Software Unauthenticated Arbitrary File Actions Vulnerability cisco-sa-3000-9000-fileaction-QtLzDRy2
Cisco NX-OS Software NX-API Cross-Site Request Forgery Vulnerability cisco-sa-nxos-nxapi-csrf-wRMzWL9z
Cisco NX-OS Software IPv6 Netstack Denial of Service Vulnerability cisco-sa-nxos-ipv6-netstack-edXPGV7K
Cisco Nexus 9000 Series Fabric Switches ACI Mode Fabric Infrastructure VLAN Unauthorized Access Vulnerability cisco-sa-n9kaci-unauth-access-5PWzDx2w
Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability cisco-sa-n9kaci-bgp-De9dPKSK
In addition to the specific advisories listed above, further advisories addressing lower severity vulnerabilities can be found on the Cisco Security Advisories page.
Last edited: 26 February 2021 11:08 am