Your review has been sent successfully

Cisco Updates

2145
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Most Viewed Warnings

Dell EMC Alert

● Critical

F5 Alert

● High

IBM Alert

● Critical

Fortinet Alert

● High

Red Hat Alert

● High

حملات تصيدية تستهدف مايكروسوفت تيمز (Microsoft Teams)

● High

Warning Date

Severity Level

Warning Number

Target Sector

7 October, 2021

● Medium

2021-3638

All

Description:

Cisco has released security updates to address several vulnerabilities in the following products:

  • Cisco Orbital
  • Cisco Vision Dynamic Signage Director releases 6.4 and earlier
  • Cisco DNA Center
  • AsyncOS Software for Cisco ESA releases earlier than Release 14.0.1
  • Cisco products if they were running a vulnerable release of Cisco IP Phone software:
    • IP Conference Phone 7832
    • IP Conference Phone 8832
    • IP Phone 7800 Series
    • IP Phone 8800 Series
    • Wireless IP Phone 8821
  • Cisco ISE
  • Cisco Business 220 Series Smart Switches
  • Cisco SSM On-Prem
  • Cisco TelePresence CE Software
  • Cisco RoomOS Software
  • Cisco AnyConnect
  • Cisco ATA 190 Series On-Premises Software or Cisco ATA 190 Series Multiplatform (MPP) Software:
    • ATA 190 (On-premises only)
    • ATA 191 (On-premises or Multiplatform)
    • ATA 192 (Multiplatform only)
  • Cisco Small Business 220 Series Smart Switches
  • Cisco Intersight Virtual Appliance

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Cross-site scripting (XSS)
  • Authentication bypass
  • Unauthorized disclosure of information

Best practice and Recommendations:

The CERT team encourages users to review Cisco security advisory and apply the necessary updates:

Last updated at 7 October, 2021

Rate the content

rate-icon
up icon