Content

Cisco issues 17 security updates

Cisco released 17 security updates in the past week, with eight considered to have a potentially high impact and the remainder rated medium.

The updates cover a variety of products and services with the high-rated vulnerabilities leading to a denial of service or a command line interface (CLI) command injection issue if exploited.

The DoS vulnerabilities exist in Cisco Nexus 1000V Switch for VMware vSphere Secure Login Enhancements (CVE-2020-316), Cisco MDS 9000 Series Multilayer Switches (CVE-2020-3175), Cisco FXOS and NX-OS Software (CVE-2020-3172), Cisco FXOS, IOS XR, and NX-OS Software (CVE-2020-3120) and Cisco IP Phone Remote (CVE-2020-3111).

The CLI command injection vulnerabilities exist in Cisco UCS Manager Software (CVE-2020-3173), Cisco FXOS and UCS Manager Software (CVE-2020-3167) and Cisco FXOS and UCS Manager Software Local Management (CVE-2020-3171).

Cisco recommends customers update their software as soon as possible.

Related

DevSecOps Scanning Challenges & Tips

There are many ways to do DevSecOps, and each organization — each security team, even — uses a different approach. Questions such as how many environments you have and the frequency of deployment of those environments are important in understanding how to integrate a security scanner into your DevSecOps machinery. The ultimate goal is speed […]

It Should Be ‘Cybersecurity Culture Month’

It’s Cybersecurity Awareness Month, but security awareness is about much more than just dedicating a month to a few activities. Security awareness is a journey, requiring motivation along the way. And culture. Especially culture.That’s the point Proofpoint Cybersecurity Evangelist Brian Reed drove home in a recent appearance on Business Security Weekly.“If your security awareness program […]

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.