Cisco публикува ъпдейти за защита – 20.06.2019

Cisco публикува ъпдейти, отстраняващи уязвимости в сигурността на множество продукти. Нападател дистанционно би могъл да използва една от тези уязвимости, за да поеме контрол над засегнатата система.

CERT България препоръчва на потребителите и администраторите да се запознаят със следните съвети за сигурност на Cisco и да приложат необходимите ъпдейти.

SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privesca – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-sdwan-privesca

DNA Center Authentication Bypass Vulnerability cisco-sa-20190619-dnac-bypass – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-dnac-bypass

TelePresence Endpoint Command Shell Injection Vulnerability cisco-sa-20190619-tele-shell-inj – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-tele-shell-inj

StarOS Denial-of-Service Vulnerability cisco-sa-20190619-staros-asr-dos – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-staros-asr-dos

SD-WAN Solution Privilege Escalation Vulnerability cisco-sa-20190619-sdwan-privilescal – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-sdwan-privilescal

SD-WAN Solution Command Injection Vulnerability cisco-sa-20190619-sdwan-cmdinj – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-sdwan-cmdinj

RV110W, RV130W, and RV215W Routers Management Interface Denial-of-Service Vulnerability cisco-sa-20190619-rvrouters-dos – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rvrouters-dos

Prime Service Catalog Cross-Site Request Forgery Vulnerability cisco-sa-20190619-psc-csrf – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-psc-csrf

Meeting Server CLI Command Injection Vulnerability cisco-sa-20190619-cms-codex – https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-cms-codex