Cisco Releases Security Updates for Multiple Products

Cisco released security updates to address vulnerabilities in Cisco software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review the following advisories and apply necessary updates:

• Cisco Secure Email Gateway Arbitrary File Write Vulnerability
• Cisco Smart Software Manager On-Prem Password Change Vulnerability
• Cisco Secure Web Appliance Privilege Escalation Vulnerability
• Cisco Identity Services Engine Arbitrary File Upload Vulnerability
• Cisco Intelligent Node Software Static Key Vulnerability
• Cisco Webex App Vulnerabilities
• Cisco RV340 and RV345 Dual WAN Gigabit VPN Routers Authenticated Remote Code Execution Vulnerability
• Cisco Expressway Series Open Redirect Vulnerability
• Cisco Secure Email Gateway Server-Side Template Injection Vulnerability

Source link