Cisco публикува обновление за подобрение на защитата за множество продукти – 24.09.2021 г.

​

Cisco публикува обновление за подобрение на защитата чрез отстраняване на уязвимостите в множество продукти на Cisco. Нападател може да използва някои от тези уязвимости, за да поеме контрола върху засегнатата система.

CERT България препоръчва на потребителите и администраторите да прегледат Cisco Security Advisories page и да приложат необходимите актуализации.

Cisco IOS XE SD-WAN Software Buffer Overflow VulnerabilityCriticalCVE-2021-34727 2021 Sep 221.0

Cisco IOS XE Software for Catalyst 9000 Family Wireless Controllers CAPWAP Remote Code Execution VulnerabilityCriticalCVE-2021-34770 2021 Sep 221.0

Cisco IOS XE Software NETCONF and RESTCONF Authentication Bypass VulnerabilityCriticalCVE-2021-1619 2021 Sep 221.0

Cisco IOS and IOS XE Software TrustSec CLI Parser Denial of Service VulnerabilityHighCVE-2021-34699 2021 Sep 221.0

Cisco IOS XE Software Rate Limiting Network Address Translation Denial of Service VulnerabilityHighCVE-2021-1624 2021 Sep 221.0

Cisco IOS XE Software Interface Queue Wedge Denial of Service VulnerabilityHighCVE-2021-1621 2021 Sep 221.0

Cisco Embedded Wireless Controller Software for Catalyst Access Points Denial of Service VulnerabilityHighCVE-2021-1615 2021 Sep 221.0

Cisco IOS and IOS XE Software IKEv2 AutoReconnect Feature Denial of Service VulnerabilityHighCVE-2021-1620 2021 Sep 221.0

Cisco IOS and IOS XE Software FXO Interface Destination Pattern Bypass VulnerabilityHighCVE-2021-34705 2021 Sep 221.0

Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers IPv6 Denial of Service VulnerabilityHighCVE-2021-34767 2021 Sep 221.0

Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers EoGRE Denial of Service VulnerabilityHighCVE-2021-1611 2021 Sep 221.0

Cisco IOS XE Software for Catalyst 9000 Family Wireless Controllers CAPWAP Denial of Service VulnerabilitiesHighCVE-2021-1565 CVE-2021-34768 …2021 Sep 221.0

Cisco Access Points SSH Management Privilege Escalation VulnerabilityHighCVE-2021-1419 2021 Sep 221.0

Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers Simple Network Management Protocol Denial of Service VulnerabilityHighCVE-2021-1623 2021 Sep 221.0

Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers Common Open Policy Service Denial of Service VulnerabilityHighCVE-2021-1622 2021 Sep 221.0

Cisco Aironet Access Points WLAN Control Protocol Packet Buffer Leak Denial of Service VulnerabilityHighCVE-2021-34740 2021 Sep 221.0

Cisco IOS XE Software Protection Against Distributed Denial of Service Attacks Feature VulnerabilityMediumCVE-2021-34697 2021 Sep 221.0

Cisco IOS XE Software Zone-Based Policy Firewall ICMP and UDP Inspection VulnerabilityMediumCVE-2021-1625 2021 Sep 221.0

Cisco IOS XE SD-WAN Software Command Injection VulnerabilityMediumCVE-2021-34725 2021 Sep 221.0

Cisco SD-WAN Software Command Injection VulnerabilityMediumCVE-2021-34726 2021 Sep 221.0

https://tools.cisco.com/security/center/publicationListing.x