Cisco released security updates to address vulnerabilities in Cisco software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review the following advisories and apply necessary updates:
- Cisco Secure Email Gateway Arbitrary File Write Vulnerability
- Cisco Smart Software Manager On-Prem Password Change Vulnerability
- Cisco Secure Web Appliance Privilege Escalation Vulnerability
- Cisco Identity Services Engine Arbitrary File Upload Vulnerability
- Cisco Intelligent Node Software Static Key Vulnerability
- Cisco Webex App Vulnerabilities
- Cisco RV340 and RV345 Dual WAN Gigabit VPN Routers Authenticated Remote Code Execution Vulnerability
- Cisco Expressway Series Open Redirect Vulnerability
- Cisco Secure Email Gateway Server-Side Template Injection Vulnerability