Cisco Products Multiple Vulnerabilities
Release Date: 18 Jul 2024
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Cisco products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service, remote code execution, elevation of privilege and data manipulation on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Elevation of Privilege
- Data Manipulation
System / Technologies affected
- Cisco AsyncOS for Secure Email Gateway 15.0, 14.2 and earlier
- Cisco AsyncOS for Secure Email Gateway with file analysis feature or content filter feature enabled, and Content scanner tools version is earlier than 23.3.0.4823
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-priv-esc-ssti-xNO2EOGZ
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-afw-bGG2UsjH
沒有留言:
發佈留言