Release Security Updates for Multiple Products (September 05, 2019)

Ref# Cisco | Date: Sep 6th 2019

Description

The Cisco Corporation has recently released security updates for vulnerabilities in multiple Cisco products. It is recommended that you take the necessary precautions by ensuring your products are always updated.

  • Webex Teams Logging Feature Command Execution Vulnerability

        https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-webex-teams

  • Industrial Network Director Configuration Data Information Disclosure Vulnerability

         https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-ind

  • Unified Contact Center Express Request Processing Server-Side Request Forgery Vulnerability

         https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-unified-ccx-ssrf

  • Content Security Management Appliance Information Disclosure Vulnerability

         https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-sma-info-dis

  • Jabber Client Framework for Mac Code Execution Vulnerability

         https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-jcf-codex

  • Identity Services Engine Cross-Site Scripting Vulnerability

         https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-ise-xss

  • Finesse Request Processing Server-Side Request Forgery Vulnerability

         https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190904-finesse-ssrf

 

The Guyana National CIRT recommends users and administration to review these updates and to apply them where necessary.

Reference

   Cisco Release Security Updates for Multiple Products (US-Cert)

https://www.us-cert.gov/ncas/current-activity/2019/09/05/cisco-releases-security-updates