Cisco Releases Security Updates for Multiple Products

Original release date: August 26, 2021

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.

CISA encourages users and administrators to review the following Cisco advisories and apply the necessary updates:

• Cisco Application Policy Infrastructure Controller Arbitrary File Read and Write Vulnerability cisco-sa-capic-frw-Nt3RYxR2
• BlackBerry QNX-2021-001 Vulnerability Affecting Cisco Products: August 2021 cisco-sa-qnx-TOxjVPdL
• Cisco NX-OS Software VXLAN OAM (NGOAM) Denial of Service Vulnerability cisco-sa-nxos-ngoam-dos-LTDb9Hv
• Cisco NX-OS Software MPLS OAM Denial of Service Vulnerability cisco-sa-nxos-mpls-oam-dos-sGO9x5GM
• Cisco Nexus 9000 Series Fabric Switches ACI Mode Multi-Pod and Multi-Site TCP Denial of Service Vulnerability cisco-sa-n9kaci-tcp-dos-YXukt6gM
• Cisco Nexus 9000 Series Fabric Switches ACI Mode Queue Wedge Denial of Service Vulnerability cisco-sa-n9kaci-queue-wedge-cLDDEfKF
• Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability cisco-sa-capic-pesc-pkmGK4J
• Cisco Application Policy Infrastructure Controller App Privilege Escalation Vulnerability cisco-sa-capic-chvul-CKfGYBh8

Source link