CERT mailing list archives
Cisco Releases Security Updates
From: "US-CERT" <US-CERT () ncas us-cert gov>
Date: Thu, 22 Aug 2019 12:33:15 -0500
Cybersecurity and Infrastructure Security Agency Logo National Cyber Awareness System: Cisco Releases Security Updates [ https://www.us-cert.gov/ncas/current-activity/2019/08/22/cisco-releases-security-updates ] 08/22/2019 12:15 PM EDT Original release date: August 22, 2019 Cisco has released security updates to address vulnerabilities in Cisco Integrated Management Controller (IMC) Supervisor, Unified Computing System (UCS) Director, and UCS Director Express for Big Data. A remote attacker could exploit these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates: * Authentication Bypass Vulnerability in IMC Supervisor, UCS Director, and UCS Director Express for Big Data releases cisco-sa-20190821-imcs-ucs-authby [ https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190821-imcs-ucs-authby ] * Authentication Bypass Vulnerability in IMC Supervisor, UCS Director, and UCS Director Express for Big Data releases cisco-sa-20190821-imcs-ucs-authbypass [ https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190821-imcs-ucs-authbypass ] * Secure Copy (SCP) User Default Credentials Vulnerability in IMC Supervisor, UCS Director, and UCS Director Express for Big Data releases cisco-sa-20190821-imcs-usercred [ https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190821-imcs-usercred ] * Application Programming Interface (API) Authentication Bypass Vulnerability in UCS Director and UCS Director Express for Big Data releases cisco-sa-20190821-ucsd-authbypass [ https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190821-ucsd-authbypass ] This product is provided subject to this Notification [ https://www.us-cert.gov/privacy/notification ] and this Privacy & Use [ https://www.dhs.gov/privacy-policy ] policy. body { font-size: 1em; font-family: Arial, Verdana, sans-serif; font-weight: normal; font-style: normal; color: #333333; } ________________________________________________________________________ A copy of this publication is available at www.us-cert.gov [ https://www.us-cert.gov ]. If you need help or have questions, please send an email to info () us-cert gov. Do not reply to this message since this email was sent from a notification-only address that is not monitored. To ensure you receive future US-CERT products, please add US-CERT () ncas us-cert gov to your address book. OTHER RESOURCES: Contact Us [ http://www.us-cert.gov/contact-us/ ] | Security Publications [ http://www.us-cert.gov/security-publications ] | Alerts and Tips [ http://www.us-cert.gov/ncas ] | Related Resources [ http://www.us-cert.gov/related-resources ] STAY CONNECTED: Sign up for email updates [ http://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new ]
Current thread:
- Cisco Releases Security Updates US-CERT (Jan 09)
- <Possible follow-ups>
- Cisco Releases Security Updates US-CERT (Jan 23)
- Cisco Releases Security Updates US-CERT (Feb 20)
- Cisco Releases Security Updates US-CERT (Feb 27)
- Cisco Releases Security Updates US-CERT (Mar 06)
- Cisco Releases Security Updates US-CERT (Mar 13)
- Cisco Releases Security Updates US-CERT (May 01)
- Cisco Releases Security Updates US-CERT (May 13)
- Cisco Releases Security Updates US-CERT (Aug 01)
- Cisco Releases Security Updates US-CERT (Aug 22)
- Cisco Releases Security Updates US-CERT (Sep 05)
- Cisco Releases Security Updates US-CERT (Oct 03)
- Cisco Releases Security Updates US-CERT (Oct 17)
- Cisco Releases Security Updates US-CERT (Nov 07)