Cisco Updates
1937Warning Date
Severity Level
Warning Number
Target Sector
21 October, 2021
● Medium
2021-3720
All
Description:
Cisco has released security updates to address several vulnerabilities in the following products:
- Cisco IOS XE SD-WAN Software:
- 1000 Series Integrated Services Routers (ISRs)
- 4000 Series ISRs
- ASR 1000 Series Aggregation Services Routers
- Catalyst 8000 Series Edge Platforms
- Cloud Services Router (CSR) 1000V Series
- Cisco IOS XR Software
- had the DHCPv4 server feature or the DHCPv4 proxy feature enabled:
- Releases 6.7.2 and later
- 7.1.2 and later, or 7.2.1 and later but earlier than Release 7.3.2 or earlier than Release 7.4.1
- ASR 9000 Series Aggregation Services Routers
- IOS XRv 9000 Routers
- Network Convergence System (NCS) 540 Series Routers
- NCS 560 Series Routers
- NCS 5000 Series Routers
- NCS 5500 Series Routers
- Cisco Webex Software
- Cisco TMS Software
- Cisco Tetration
- Cisco ISE Software
- UCS C-Series Rack Servers in standalone mode
- UCS S-Series Storage Servers in standalone mode
- Cisco Meeting Server
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS)
- Authentication bypass
- Install the restricted file remotely
- Denial of Service (DoS)
- Execute arbitrary code with root privileges
Best practice and Recommendations:
The CERT team encourages users to review Cisco security advisory and apply the necessary updates:
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-rhpbE34A
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-dhcp-dos-pjPVReLU
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-2FmKd7T
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tms-xss-CwjZJSQc
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sec-work-xss-t6SYtu8Q
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss1-rgxYry2V
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-download-B3BR5KQA
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-imc-gui-dos-TZjrFyZh
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cms-LAHe8z5v