تحديثات Cisco
2300تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
8 إبريل, 2021
● عالي
2021-2731
الكل
الوصف:
أصدرت Cisco عدة تحديثات لمعالجة عدد من الثغرات في المنتجات التالية:
- Cisco SD-WAN
- Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface
- Cisco Small Business RV Series
- Cisco Small Business RV Series
- Cisco Unified Communications Products
- Cisco Advanced Malware Protection for Endpoints Windows Connector, ClamAV for Windows, and Immunet
- Cisco IOS XR Software
- Cisco Webex Meetings
- Cisco Webex Meetings
- Cisco Unified Communications Manager
- Cisco Umbrella Link and CSV
- Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Authenticated
- Cisco Unified Intelligence Center Reflected
- Cisco Unified Communications Products
- Cisco Unified Communications Manager Self Care Portal Authorization
- Cisco Unified Communications Manager
التهديدات:
يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:
- تنفيذ برمجيات خبيثة
- تنفيذ أوامر خبيثة
- حقن الأوامر
- حقن HTML
- الكشف والإفصاح عن معلومات حساسة
- الإجراءات الوقائية:
يوصي المركز بتحديث النسخ المتأثرة حيث أصدرتCisco توضيحًا لهذه التحديثات:
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanage-YuTVWqy
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-q3rxHnvm
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-bypass-inject-Rbhgvfdx
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-multi-lldp-u7e4chCe
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-rce-pqVYwyb
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-amp-imm-dll
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xr-cmdinj-vsKGherctu79hvkO
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-andro-iac-f3UR8frB
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-VObwRKWV
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-inject-gbZGHP5T
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv34x-rce-8bfG2h6b
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cuic-xss-U2WTsUg6
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-xss-Q4PZcNzJ
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-selfcare-VRWWWHgE
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-inf-disc-wCxZNjL2