Cisco Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Cisco Products, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, cross-site scripting, security restriction bypass, remote code execution and sensitive information disclosure on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Cross-Site Scripting
- Information Disclosure
System / Technologies affected
- Cisco ISO XE SD-WAN
- Cisco ISO XR
- Cisco Webex
- Cisco TelePresence Management Suite
- Cisco Tetration
- Cisco Identity Services Engine
- Cisco Integrated Management Controller
- Cisco Meeting Server
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-rhpbE34A
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-2FmKd7T
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-tms-xss-CwjZJSQc
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sec-work-xss-t6SYtu8Q
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss1-rgxYry2V
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-imc-gui-dos-TZjrFyZh
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cms-LAHe8z5v
Vulnerability Identifier
- CVE-2021-1529
- CVE-2021-34736
- CVE-2021-34737
- CVE-2021-34738
- CVE-2021-34743
- CVE-2021-34760
- CVE-2021-34789
- CVE-2021-40121
- CVE-2021-40122
- CVE-2021-40123
Source
Related Link
https://tools.cisco.com/security/center/publicationListing.x
Related Tags
Share with