it.ucsf.edu

Security Update:CISCO released 3 Critical and 4 High security advisories to address vulnerabilities in multiple products

Status Type

Security Update

Date and Time

Thursday, May 17, 2018 - 09:27

Reason

Security update

Impact

Cisco users

WHAT HAPPENED

CISCO released 3 Critical and 4 High security advisories to address vulnerabilities in multiple products.

 

Advanced Users: For a complete description of the vulnerabilities visit:

 

Affected Systems:

  • Cisco DNA Center Software prior to Release 1.1.3
  • Cisco DNA Center Software Releases prior to 1.1.2
  • Cisco devices that are running release 3.7.1, 3.6.3, or earlier releases of Cisco Enterprise NFV Infrastructure Software (NFVIS) when access to the SCP server is allowed on the affected device
  • Cisco Meeting Server deployments that are running Cisco Meeting Server Software Releases 2.0, 2.1, 2.2, and 2.3
  • Cisco ISE

  • Cisco ISE Express

  • Cisco ISE Virtual Appliance
  • Connected Grid Network Management System, if running a software release prior to IoT-FND Release 3.0.

  • IoT Field Network Director, if running a software release prior to IoT-FND Release 4.1.1-6 or 4.2.0-123.

 

WHAT’S THE PROBLEM?

A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

 

WHAT DO I NEED TO DO?

Users and administrators are encouraged to review the above Cisco Security Advisory and apply the offered updates.

RELATED LINKS