Cisco Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities have been identified in Cisco Products, which could be exploited by attackers to conduct cross-site scripting attack, perform remote code execution, trigger denial of service conditions, obtain potentially sensitive information and bypass security restriction on the target system.
Impact
- Cross-Site Scripting
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- Cisco Unified Communications Manager
- Cisco IOS XR Software
- Cisco IOS and IOS XE Software
- Cisco Firepower System Software
- Cisco Email Security Appliance
- Cisco Content Security Management Appliance
For other Cisco products, please refer to here.
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- The vendor has issued a fix.
Vulnerability Identifier
- CVE-2018-0101
- CVE-2018-0113
- CVE-2018-0116
- CVE-2018-0117
- CVE-2018-0119
- CVE-2018-0120
- CVE-2018-0122
- CVE-2018-0123
- CVE-2018-0125
- CVE-2018-0127
- CVE-2018-0128
- CVE-2018-0129
- CVE-2018-0132
- CVE-2018-0134
- CVE-2018-0135
- CVE-2018-0137
- CVE-2018-0138
- CVE-2018-0140
- CVE-2018-0198
Source
Related Link
Share with