CIRT.GY | Release Security Updates for Multiple Products (S

Release Security Updates for Multiple Products (September 05, 2019)

Ref# Cisco | Date: Sep 6th 2019

Description

The Cisco Corporation has recently released security updates for vulnerabilities in multiple Cisco products. It is recommended that you take the necessary precautions by ensuring your products are always updated.

Webex Teams Logging Feature Command Execution Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-webex-teams

Industrial Network Director Configuration Data Information Disclosure Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-ind

Unified Contact Center Express Request Processing Server-Side Request Forgery Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-unified-ccx-ssrf

Content Security Management Appliance Information Disclosure Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-sma-info-dis

Jabber Client Framework for Mac Code Execution Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-jcf-codex

Identity Services Engine Cross-Site Scripting Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-ise-xss

Finesse Request Processing Server-Side Request Forgery Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-finesse-ssrf

The Guyana National CIRT recommends users and administration to review these updates and to apply them where necessary.

Reference

Cisco Release Security Updates for Multiple Products (US-Cert)

https://www.us-cert.gov/ncas/current-activity/2019/09/05/cisco-releases-security-updates