CIRT.GY | Release Security Updates for Multiple Products (J

Release Security Updates for Multiple Products (July 03, 2019)

Ref# Cisco | Date: Jul 5th 2019

Description

The Cisco Corporation has recently released security updates for vulnerabilities in multiple Cisco products. It is recommended that you take the necessary precautions by ensuring your products are always updated.

High

Web Security Appliance HTTPS Certificate Denial-of-Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-wsa-dos

Small Business Series Switches Memory Corruption Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-sbss-memcorrupt

Small Business Series Switches HTTP Denial-of-Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-sbss-dos

Enterprise NFV Infrastructure Software Arbitrary File Read and Write Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-nfvis-file-readwrite

Nexus 9000 Series Fabric Switches ACI Mode Fabric Infrastructure VLAN Unauthorized Access Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-n9kaci-bypass

Jabber for Windows DLL Preloading Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-jabber-dll

Unified Communications Manager Session Initiation Protocol Denial-of-Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-cucm-dos

Application Policy Infrastructure Controller REST API Privilege Escalation Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-ccapic-restapi

Web Security Appliance Web Proxy Denial-of-Service Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190703-asyncos-wsa

For more information on the CISCO updates you can follow this url:

https://tools.cisco.com/security/center/publicationListing.x

The Guyana National CIRT recommends users and administration to review these updates and to apply them where necessary.

Reference

Cisco Release Security Updates for Multiple Products (US-Cert)

https://www.us-cert.gov/ncas/current-activity/2019/07/03/cisco-releases-security-updates-multiple-products