Cisco released 17 security updates in the past week, with eight considered to have a potentially high impact and the remainder rated medium.

The updates
cover a variety of products and services with the high-rated vulnerabilities leading
to a denial of service or a command line interface (CLI) command injection
issue if exploited.

The DoS vulnerabilities
exist in Cisco Nexus 1000V Switch for VMware vSphere Secure Login Enhancements
(CVE-2020-316), Cisco MDS 9000 Series Multilayer Switches (CVE-2020-3175), Cisco
FXOS and NX-OS Software (CVE-2020-3172), Cisco FXOS, IOS XR, and NX-OS Software
(CVE-2020-3120) and Cisco IP Phone Remote (CVE-2020-3111).

The CLI command injection vulnerabilities exist in Cisco UCS Manager Software (CVE-2020-3173), Cisco FXOS and UCS Manager Software (CVE-2020-3167) and Cisco FXOS and UCS Manager Software Local Management (CVE-2020-3171).

Cisco recommends customers update their software as soon as possible.



Source link

Write a comment:
*

Your email address will not be published.