Cisco Updates
1958Warning Date
Severity Level
Warning Number
Target Sector
21 May, 2020
● High
2020-1259
All
Description:
Cisco has released security updates to address multiple vulnerabilities in the following products :
- Cisco Unified CCX software
- Cisco Prime Network Registrar
- Cisco Prime Collaboration Provisioning Software
- releases earlier than Release 12.6 SU2
- Cisco AMP for Endpoints Mac Connector Software
- releases earlier than Release 1.12.3.738
- AMP for Endpoints Linux Connector Software
- releases earlier than Release 1.12.3.698
- AMP for Endpoints Mac Connector Software
- releases earlier than Release 1.12.3.738
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Denial of service attack (DoS)
- SQL Injection remotely
- Execute arbitrary code remotely
Best practice and Recommendations:
The CERT team encourages users to apply the necessary updates according to the link below:
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uccx-rce-GMSC6RKN
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cpnr-dhcp-dos-BkEZfhLP
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pcp-sql-inj-22Auwt66
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-amp4emac-dos-kfKjUGtM
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-amp4elinux-h33dkrvb