TR-21-0392 (Cisco Güvenlik Zafiyeti)

Genel Bilgi

Bazı Cisco ürünlerinde Uzaktan Kod Çalıştırma, Komut Enjeksiyonu ve XSS güvenlik zafiyetleri tespit edilmiştir.

Etki

Mevcut güvenlik açıklıkları nedeniyle saldırganın hedef aldığı sistemde saldırı gerçekleştirmesi ihtimal dahilindedir.

CVE-2021-1531, CVE-2021-1254, CVE-2021-1306, CVE-2021-1358, CVE-2021-1487, CVE-2021-1547, CVE-2021-1548, CVE-2021-1549, CVE-2021-1550, CVE-2021-1551, CVE-2021-1552, CVE-2021-1553, CVE-2021-1554, CVE-2021-1555, CVE-2021-1557, CVE-2021-1558, CVE-2021-1559 ve CVE-2021-1560

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), sistem yöneticilerine; Cisco firmasının yayınladığı güncellemeyi indirmelerini tavsiye etmektedir.

Kaynaklar

https://www.cybersecurity-help.cz/vdb/SB2021052009Remote

https://us-cert.cisa.gov/ncas/current-activity/2021/05/20/cisco-releases-security-updates-multiple-productsCisco

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1254

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1306

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1358

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1487

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1531

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1547

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1548

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-1549

https://www.cybersecurity-help.cz/vdb/SB2021052009

2021-05-24