Security Warnings

Classification
These posts contain security warnings, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Cisco Updates

108

Warning Date: 22 July, 2021

Severity Level ● Medium

Warning Number: 2021-3238

Target Sector: All

Description:

Cisco has released security updates to address multiple vulnerabilities in the following products:

  • Cisco Intersight Virtual Appliance
    • Releases earlier than the first fixed release for IPv4 traffic
    • Releases 1.0.9-184 to the first fixed release for IPv6 traffic
    • Earlier than Release 1.0.9-292
  • Cisco SD-WAN vManage Software
  • Cisco FDM On-Box Software
  • Cisco Unified CVP
    • Release 12.5(1)

Threats:

An attacker could exploit these vulnerabilities by doing the following:

  • Denial of service (DoS)
  • Cross-site scripting (XSS)
  • Information disclosure
  • Privilege Escalation
  • Execute arbitrary code

Best practice and Recommendations:

The CERT team encourages users to review Cisco security advisory and apply the necessary updates:

Last updated at 22 July, 2021