Cisco Products Multiple Vulnerabilities
Last Update Date:
24 Feb 2023 16:00
Release Date:
24 Feb 2023
5498
Views
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Cisco Systems Products. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.
Impact
- Elevation of Privilege
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- Cisco ESA
- Cisco Secure Email and Web Manager
- Firepower 4100 Series
- Firepower 9300 Security Appliances
- MDS 9000 Series Multilayer Switches (CSCwd18009)
- Nexus 1000 Virtual Edge for VMware vSphere (CSCwd18012)
- Nexus 1000V Switch for Microsoft Hyper-V (CSCwd18012)
- Nexus 1000V Switch for VMware vSphere (CSCwd18012)
- Nexus 3000 Series Switches (CSCwd00653)
- Nexus 5500 Platform Switches (CSCwd18013)
- Nexus 5600 Platform Switches (CSCwd18013)
- Nexus 6000 Series Switches (CSCwd18013)
- Nexus 7000 Series Switches (CSCwd18011)
- Nexus 9000 Series Switches in standalone NX-OS mode (CSCwd00653)
- UCS 6200 Series Fabric Interconnects
- UCS 6300 Series Fabric Interconnects
- UCS 6400 Series Fabric Interconnects
- UCS 6500 Series Fabric Interconnects
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-x509v3-unsupportedconfig-ScRtAbUk
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cli-cmdinject-euQVK9u
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-bkpsky-H8FCQgsA
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-privesc-9DVkFpJ8
Vulnerability Identifier
Source
Related Link
- https://www.auscert.org.au/bulletins/ESB-2023.1133
- https://www.auscert.org.au/bulletins/ESB-2023.1132
- https://www.auscert.org.au/bulletins/ESB-2023.1131
- https://www.auscert.org.au/bulletins/ESB-2023.1130
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-x509v3-unsupportedconfig-ScRtAbUk
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cli-cmdinject-euQVK9u
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-bkpsky-H8FCQgsA
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-privesc-9DVkFpJ8
Share with