Cisco Security Advisories, Responses, and Notices

Seven high and one critical advisories. 22 Mar 2017 https://tools.cisco.com/security/center/publicationListing.x

Cisco IOx Data in Motion Stack Overflow Vulnerability

Cisco IOS XE Software for Cisco ASR 920 Series Routers Zero Touch Provisioning Denial of Service Vulnerability

Cisco IOS XE Software HTTP Command Injection Vulnerability

Cisco IOS XE Software Web User Interface Denial of Service Vulnerability

Cisco IOS and IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability

Cisco IOS and IOS XE Software DHCP Client Denial of Service Vulnerability

Cisco Application-Hosting Framework Arbitrary File Creation Vulnerability

Cisco Application-Hosting Framework Directory Traversal Vulnerability

 

One critical and one high advisories. 23 Mar 2017 https://tools.cisco.com/security/center/publicationListing.x


Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: January and February 2017

 

One critical advisory. 28 Mar 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One critical advisory. 29 Mar 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One medium advisory. 31 Mar 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One critical advisory. 03 Apr 2017 https://tools.cisco.com/security/center/publicationListing.x

 

Nineteen medium, three high, and one critical advisories. 05 Apr 2017

https://tools.cisco.com/security/center/publicationListing.x

 

One low and one medium advisories. 11 Apr 2017 https://tools.cisco.com/security/center/publicationListing.x

 

Two critical advisories. 13 Apr 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One medium advisory. 14 Apr 2017 https://tools.cisco.com/security/center/publicationListing.x

 

Eleven medium, seven high, and one critical advisories.

https://tools.cisco.com/security/center/publicationListing.x

Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products
Critical

CVE-2017-5638
2017 Apr 19 1.11
Cisco Unified Communications Manager Denial of Service Vulnerability
High

CVE-2017-3808
2017 Apr 19 1.0
Cisco Firepower Detection Engine Pragmatic General Multicast Protocol Decoding Denial of Service Vulnerability
High

CVE-2016-6368
2017 Apr 19 1.0
Cisco IOS and IOS XE Software EnergyWise Denial of Service Vulnerabilities
High

CVE-2017-3860
CVE-2017-3861 ...
2017 Apr 19 1.0
Cisco ASA Software Internet Key Exchange Version 1 XAUTH Denial of Service Vulnerability
High

CVE-2017-6610
2017 Apr 19 1.0
Cisco ASA Software SSL/TLS Denial of Service Vulnerability
High

CVE-2017-6608
2017 Apr 19 1.0
Cisco ASA Software IPsec Denial of Service Vulnerability
High

CVE-2017-6609
2017 Apr 19 1.0
Cisco ASA Software DNS Denial of Service Vulnerability
High

CVE-2017-6607
2017 Apr 19 1.0
Cisco Prime Network Registrar DNS Denial of Service Vulnerability
Medium

CVE-2017-6613
2017 Apr 19 1.0
Cisco IOS XE Software Simple Network Management Protocol Subsystem Denial of Service Vulnerability
Medium

CVE-2017-6615
2017 Apr 19 1.0
Cisco FindIT Network Probe Information Disclosure Vulnerability
Medium

CVE-2017-6614
2017 Apr 19 1.0
Cisco Prime Infrastructure Web Framework Code Cross-Site Scripting Vulnerability
Medium

CVE-2017-6611
2017 Apr 19 1.0
Cisco Integrated Management Controller Arbitrary Code Execution Vulnerability
Medium

CVE-2017-6616
2017 Apr 19 1.0
Cisco Integrated Management Controller User Session Hijacking Vulnerability
Medium

CVE-2017-6617
2017 Apr 19 1.0
Cisco Integrated Management Controller Cross-Site Scripting Vulnerability
Medium

CVE-2017-6618
2017 Apr 19 1.0
Cisco Integrated Management Controller Command Execution Vulnerability
Medium

CVE-2017-6619
2017 Apr 19 1.0
Cisco ASA Software and Cisco FTD Software TCP Normalizer Denial of Service Vulnerability
Medium

CVE-2017-3793
2017 Apr 19 1.0
Cisco Industrial Ethernet 2000 Series Switches CIP Denial of Service Vulnerability
Medium

CVE-2017-3812
2017 Apr 18 1.1
Cisco Prime Optical for Service Providers RADIUS Secret Disclosure Vulnerability

 

Two medium and one High advisories. 21 Apr 2017
https://tools.cisco.com/security/center/publicationListing.x

 

One medium advisory. 24 Apr 2017 https://tools.cisco.com/security/center/publicationListing.x

 

Six medium, three high, and one critical advisories. https://tools.cisco.com/security/center/publicationListing.x

Cisco CVR100W Wireless-N VPN Router Universal Plug-and-Play Buffer Overflow

Cisco IOS XR Software Denial of Service Vulnerability

Cisco TelePresence ICMP Denial of Service Vulnerability

Cisco Aironet 1800, 2800, and 3800 Series Access Points Plug-and-Play Arbitrary Code Execution Vulnerability

Cisco Wide Area Application Services SMART-SSL Accelerator Denial of Service Vulnerability

Cisco Firepower Threat Defense and Cisco ASA with FirePOWER Module Denial of Service Vulnerability

Cisco Finesse for Cisco Unified Contact Center Enterprise Information Disclosure Vulnerability

Cisco CVR100W Wireless-N VPN Router Remote Management Security Bypass Vulnerability

Cisco Unity Connection ImageID Parameter Unauthorized Access Vulnerability

Cisco CallManager Express Unauthorized Access Vulnerability

 

One critical advisory. 04 May 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One critical advisory. 05 May 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One critical advisory. 08 May 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One medium advisory. 09 May 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One high and one medium advisory. 10 May 2017 https://tools.cisco.com/security/center/publicationListing.x

 

Two medium and one withdrawn advisories. 12 May 2017 https://tools.cisco.com/security/center/publicationListing.x

 

One critical, three high, nineteen medium, and one unrated. 17 May 2017
https://tools.cisco.com/security/center/publicationListing.x

 

One critical, one high, and one unrated advisories. 22 May 2017
https://tools.cisco.com/security/center/publicationListing.x


Cisco Integrated Management Controller Remote Code Execution Vulnerability

Cisco Integrated Management Controller Privilege Escalation Vulnerability

MS17-010 (Ransomware WannaCry) Impact to Cisco Products

 

Two high and one medium advisories. 24 May 2017
https://tools.cisco.com/security/center/publicationListing.x

Cisco TelePresence IX5000 Series Directory Traversal Vulnerability

Cisco Firepower System Software URL Filtering Bypass Vulnerability

Cisco CallManager Express Unauthorized Access Vulnerability

 

One critical and one high advisories. 30 May 2017 https://tools.cisco.com/security/center/publicationListing.x

Cisco Aironet 1830 Series and 1850 Series Access Points Mobility Express Default Credential Vulnerability

Vulnerability in Samba Affecting Cisco Products

 

One critical, one high, and three medium advisories. 31 May 2017
https://tools.cisco.com/security/center/publicationListing.x

Cisco Integrated Management Controller Remote Code Execution Vulnerability

Cisco Integrated Management Controller Privilege Escalation Vulnerability

Vulnerability in Linux Kernel Affecting Cisco Products: October 2016

Cisco Integrated Management Controller Cross-Site Scripting Vulnerability

Cisco Integrated Management Controller User Session Hijacking Vulnerability