思科產品多個漏洞
最後更新
2023年02月24日 16:00
發佈日期:
2023年02月24日
1450
觀看次數
風險: 中度風險
類型: 保安軟件及應用設備 - 保安軟件及應用設備
於 Cisco Systems Products 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發權限提升、遠端執行任意程式碼及洩露敏感資料。
影響
- 權限提升
- 遠端執行程式碼
- 資料洩露
受影響之系統或技術
- Cisco ESA
- Cisco Secure Email and Web Manager
- Firepower 4100 Series
- Firepower 9300 Security Appliances
- MDS 9000 Series Multilayer Switches (CSCwd18009)
- Nexus 1000 Virtual Edge for VMware vSphere (CSCwd18012)
- Nexus 1000V Switch for Microsoft Hyper-V (CSCwd18012)
- Nexus 1000V Switch for VMware vSphere (CSCwd18012)
- Nexus 3000 Series Switches (CSCwd00653)
- Nexus 5500 Platform Switches (CSCwd18013)
- Nexus 5600 Platform Switches (CSCwd18013)
- Nexus 6000 Series Switches (CSCwd18013)
- Nexus 7000 Series Switches (CSCwd18011)
- Nexus 9000 Series Switches in standalone NX-OS mode (CSCwd00653)
- UCS 6200 Series Fabric Interconnects
- UCS 6300 Series Fabric Interconnects
- UCS 6400 Series Fabric Interconnects
- UCS 6500 Series Fabric Interconnects
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-x509v3-unsupportedconfig-ScRtAbUk
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cli-cmdinject-euQVK9u
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-bkpsky-H8FCQgsA
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-privesc-9DVkFpJ8
漏洞識別碼
資料來源
相關連結
- https://www.auscert.org.au/bulletins/ESB-2023.1133
- https://www.auscert.org.au/bulletins/ESB-2023.1132
- https://www.auscert.org.au/bulletins/ESB-2023.1131
- https://www.auscert.org.au/bulletins/ESB-2023.1130
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-x509v3-unsupportedconfig-ScRtAbUk
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxos-cli-cmdinject-euQVK9u
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nxfp-cmdinj-XXBZjtR
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsm-bkpsky-H8FCQgsA
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-sma-privesc-9DVkFpJ8
分享至