Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.
US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:
- Cloud Services Platform 2100 Unauthorized Access Vulnerability cisco-sa-20171018-ccs
- FXOS and NX-OS System Software Authentication, Authorization, and Accounting Denial-of-Service Vulnerability cisco-sa-20171018-aaavty
- Small Business SPA50x, SPA51x, and SPA52x Series IP Phones SIP Denial-of-Service Vulnerability cisco-sa-20171018-sip1
- Small Business SPA51x Series IP Phones SIP Denial-of-Service Vulnerability cisco-sa-20171018-sip