CIRT.GY | Release Security Updates for Data Center Network

Release Security Updates for Data Center Network Manager (June 26th , 2019)

Ref# Cisco | Date: Jun 27th 2019

Description

The Cisco Corporation has recently released security updates to address vulnerabilities in Cisco Data Center Network Manager (DCNM). It is recommended that you take the necessary precautions by ensuring your products are always updated.

Critical

DCNM Arbitrary File Upload and Remote Code Execution Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190626-dcnm-codex

DCNM Authentication Bypass Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190626-dcnm-bypass

High

DCNM Arbitrary File Download Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190626-dcnm-file-dwnld

Medium

DCNM Information Disclosure Vulnerability

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190626-dcnm-infodiscl

The Guyana National CIRT recommends users and administration to review these updates and to apply them where necessary.

Reference

Cisco release Security updates for Data Center Network Manager (US-Cert)

https://www.us-cert.gov/ncas/current-activity/2019/06/26/cisco-releases-security-updates-data-center-network-manager