Cisco has published security updates to address multiple vulnerabilities in multiple products on 29th April, 2021. It is recommended that you take the necessary precautions by ensuring your products are always updated.
- Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Buffer Overflow Denial of Service Vulnerability
- Cisco Firepower Threat Defense Software SSL Decryption Policy Denial of Service Vulnerability
- Cisco Firepower Threat Defense Software Command Injection Vulnerability
- Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services VPN Denial of Service Vulnerabilities
- Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software SIP Denial of Service Vulnerability
For more information on these Cisco updates you can follow this URL:
https://tools.cisco.com/security/center/publicationListing.x
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: Cisco Releases Security Updates for Multiple products.pdf
References
- Cisco releases security updates (29th April, 2021). Retrieved from Canadian Centre for Cyber Security
https://cyber.gc.ca/en/alerts/cisco-security-advisory-79
- Cisco releases security updates (29th April, 2021). Retrieved from US-CERT
https://us-cert.cisa.gov/ncas/current-activity/2021/04/29/cisco-releases-security-updates-multiple-products