Cisco Security Advisory (21st May 2024)

Ref# ADV2024_160 | Date: May 21st 2024

Cisco has published a security advisory highlighting vulnerabilities in the following products on May 15th, 2024. It is recommended that you take the necessary precautions by ensuring your products are always updated.

  • Cisco Crosswork Network Services Orchestrator (NSO) CLI – multiple versions
  • ConfD CLI – multiple versions

For more information on these updates, you can follow these URLs:

  1. Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability 
  2. Cisco Crosswork Network Services Ochestrator Vulnerabilities 
  3. ConfD CLI Privilege Escalation and Arbitrary File Read and Write Vulnerabilities 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Cisco Security Advisory

References