思科產品多個漏洞

影響

• 阻斷服務
• 權限提升
• 仿冒
• 遠端執行程式碼
• 篡改
• 繞過保安限制
• 跨網站指令碼
• 資料洩露

受影響之系統或技術

• 思科 Policy Suite
• 思科 Catalyst PON Series Switches
• 思科 Business Series Switches
• 思科 Email Security Appliance
• 思科 Webex
• 思科 Umbrella
• 思科 Small Business Series Switches
• 思科 Small Business RV Series Routers
• 思科 Prime
• 思科 AnyConnect

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

安裝供應商提供的修補程式：

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-catpon-multivulns-CE3DSYGr

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-smb-switches-tokens-UzwpR4e5

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-dos-JOm9ETfO

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-activation-3sdNFxcy

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmesh-openred-AGNRmf5

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-videomesh-xss-qjm2BDQf

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-user-enum-S7XfJwDE

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucm-csrf-xrTkDu3H

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-smb-switches-web-dos-xMyFFkt8

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sbrv-cmdinjection-Z5cWFdK

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-xss-U2JK537j

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-path-trav-dKCvktvO

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cspc-info-disc-KM3bGVL

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cpar-strd-xss-A4DCVETG

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-nam-priv-yCsRNUGT

漏洞識別碼

• CVE-2021-1500
• CVE-2021-34701
• CVE-2021-34731
• CVE-2021-34739
• CVE-2021-34741
• CVE-2021-34773
• CVE-2021-34774
• CVE-2021-34784
• CVE-2021-34795
• CVE-2021-40112
• CVE-2021-40113
• CVE-2021-40115
• CVE-2021-40119
• CVE-2021-40120
• CVE-2021-40124
• CVE-2021-40126
• CVE-2021-40127
• CVE-2021-40128

資料來源

• Cisco

相關連結

https://tools.cisco.com/security/center/publicationListing.x