TR-21-0439 (Cisco Güvenlik Güncellemesi Yayınladı)

Genel Bilgi

Bazı Cisco ürünlerinde bulunan Uzaktan Kod Çalıştırma, Bilgi İfşası, Yetki Yükseltme ve Hizmet Kesintisi güvenlik zafiyetleri için güncelleme yayınladı.

Etki

Mevcut güvenlik açıklıkları nedeniyle saldırganın hedef aldığı sistemde saldırı gerçekleştirmesi ihtimal dahilindedir.

CVE-2021-1527, CVE-2021-1526, CVE-2021-1502, CVE-2021-1517, CVE-2021-1536, CVE-2021-1544, CVE-2021-1537, CVE-2021-1528, CVE-2021-1563, CVE-2021-1564, CVE-2021-1539 ve CVE-2021-1540

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), sistem yöneticilerine; Cisco firmasının yayınladığı güncellemeyi indirmelerini tavsiye etmektedir.

Kaynaklar

https://us-cert.cisa.gov/ncas/current-activity/2021/06/02/cisco-releases-security-updates-multiple-productsCisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-kxtkFbnR?vs_f=Cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-kxtkFbnR

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-kOf8zVT?vs_f=Cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-kOf8zVT

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-dOJ2jOJ?vs_f=Cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-player-dOJ2jOJ

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-multimedia-26DpqVRO?vs_f=Cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-multimedia-26DpqVRO

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-dll-inject-XNmcSGTU?vs_f=Cisco

https://us-cert.cisa.gov/ncas/current-activity/2021/06/02/cisco-releases-security-updates-multiple-products

2021-06-03