Cisco released security updates to address vulnerabilities in Cisco software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review the following advisories and apply necessary updates:
Cisco Secure Email Gateway Arbitrary File Write Vulnerability
Cisco Smart Software Manager On-Prem Password Change Vulnerability
Cisco Secure Web Appliance Privilege Escalation Vulnerability
Cisco Identity Services Engine Arbitrary File Upload Vulnerability
Cisco Intelligent Node Software Static Key Vulnerability
Cisco Webex App Vulnerabilities
Cisco RV340 and RV345 Dual WAN Gigabit VPN Routers Authenticated Remote Code Execution Vulnerability
Cisco Expressway Series Open Redirect Vulnerability
Cisco Secure Email Gateway Server-Side Template Injection Vulnerability