Cisco Releases Security Updates for Multiple Products

Threat ID:: CC-3964
Threat Severity:: Information only
Published:: 22 October 2021 2:28 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Affected platforms

The following platforms are known to be affected:

Versions: ATA 190 (On-premises only), ATA 191 (On-premises or Multiplatform), ATA 192 (Multiplatform only)

Cisco ATA 190 Series

Cisco IOS XR

Cisco ISE

Cisco IOS XE

Threat details

Introduction

Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

Remediation advice

Affected organisations are encouraged to review the following Cisco Security Advisories to identify vulnerable products and versions, and apply the necessary updates or workarounds.

Remediation steps

Type	Step
Patch	Cisco ATA 190 Series Analog Telephone Adapter Software Vulnerabilities https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ata19x-multivuln-A4J57F3
Patch	Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-npspin-QYpwdhFD
Patch	Cisco IOS XR Software IP Service Level Agreements and Two-Way Active Measurement Protocol Denial of Service Vulnerability https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipsla-ZA3SRrpP
Patch	Cisco Identity Services Engine Privilege Escalation Vulnerability https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-priv-esc-UwqPrBM3
Patch	Cisco IOS XE SD-WAN Software Command Injection Vulnerability https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-rhpbE34A

Last edited: 22 October 2021 2:51 pm