Cisco informuje o nowych podatnościach. (P24-356)

utworzone przez | paź 24, 2024 | Aktualizacje

23 października 2024 r. firma Cisco opublikowała ostrzeżenia dotyczące bezpieczeństwa, mające na celu wyeliminowanie luk w zabezpieczeniach wielu produktów.

  • Cisco Adaptive Security Appliance (ASA) Software – wiele wersji
  • Cisco Firepower Management Center (FMC) Software – wiele wersji
  • Cisco Firepower Threat Defense (FTD) Software – wiele wersji
  • Cisco Secure Firewall Management Center (FMC) Software – wiele wersji
Link/OpisKrytycznośćCVE ID
Cisco Secure Firewall Management Center Software Command Injection VulnerabilityKrytycznaCVE-2024-20424
Cisco Adaptive Security Appliance Software SSH Remote Command Injection VulnerabilityKrytycznaCVE-2024-20329
Cisco Firepower Threat Defense Software and Cisco FirePOWER Services TCP/IP Traffic with Snort 2 and Snort 3 Denial of Service VulnerabilityWysokaCVE-2024-20351
Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Appliances TCP UDP Snort 2 and Snort 3 Denial of Service VulnerabilityWysokaCVE-2024-20330
Cisco Firepower Threat Defense Software for Firepower 2100 Series TLS Denial of Service VulnerabilityWysokaCVE-2024-20339
Cisco Adaptive Security Virtual Appliance and Secure Firewall Threat Defense Virtual SSL VPN Denial of Service VulnerabilityWysokaCVE-2024-20260
Cisco Adaptive Security Appliance and Firepower Threat Defense Software SSL VPN Memory Management Denial of Service VulnerabilityWysokaCVE-2024-20402
Cisco Adaptive Security Appliance and Firepower Threat Defense Software SNMP Denial of Service VulnerabilityWysokaCVE-2024-20268
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution VulnerabilityWysokaCVE-2024-20485
Cisco Adaptive Security Appliance and Firepower Threat Defense Software IKEv2 VPN Denial of Service VulnerabilityWysokaCVE-2024-20426
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Dynamic Access Policies Denial of Service VulnerabilityWysokaCVE-2024-20408
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access VPN Denial of Service VulnerabilityWysokaCVE-2024-20495
Cisco Adaptive Security Appliance and Firepower Threat Defense Software TLS Denial of Service VulnerabilityWysokaCVE-2024-20494
Cisco Firepower Threat Defense Software and Firepower Management Center Software Code Injection VulnerabilityWysokaCVE-2023-20063
Multiple Cisco Products Snort Rate Filter Bypass VulnerabilityŚredniaCVE-2024-20342
Cisco Firepower Threat Defense Software TCP Snort 3 Detection Engine Bypass VulnerabilityŚredniaCVE-2024-20407
Cisco Firepower Threat Defense Software Geolocation ACL Bypass VulnerabilityŚredniaCVE-2024-20431
Cisco Secure Firewall Management Center Software Cross-Site Scripting and Information Disclosure VulnerabilitiesŚredniaCVE-2024-20377
CVE-2024-20387 …
Cisco Secure Firewall Management Center Software Cross-Site Scripting VulnerabilitiesŚredniaCVE-2024-20264
CVE-2024-20269 …
Cisco Secure Firewall Management Center Software SQL Injection VulnerabilityŚredniaCVE-2024-20340
Cisco Secure Firewall Management Center Software SQL Injection VulnerabilitiesŚredniaCVE-2024-20471
CVE-2024-20472 …
Cisco Secure Firewall Management Center Privilege Escalation VulnerabilityŚredniaCVE-2024-20482
Cisco Secure Firewall Management Center Software HTML Injection VulnerabilityŚredniaCVE-2024-20274
Cisco Secure Firewall Management Center Software Arbitrary File Read VulnerabilityŚredniaCVE-2024-20379
Cisco Secure Firewall Management Center Software Cluster Backup Command Injection VulnerabilityŚredniaCVE-2024-20275
Cisco Secure Firewall Management Center Software Command Injection VulnerabilityŚredniaCVE-2024-20374
Cisco Secure Client Software Denial of Service VulnerabilityŚredniaCVE-2024-20474
Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Cross-Site Scripting VulnerabilitiesŚredniaCVE-2024-20341
CVE-2024-20382
Cisco Adaptive Security Appliance and Firepower Threat Defense Software NSG Access Control List Bypass VulnerabilityŚredniaCVE-2024-20384
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access VPN Brute Force Denial of Service VulnerabilityŚredniaCVE-2024-20481
Cisco Adaptive Security Appliance and Firepower Threat Defense Software AnyConnect Access Control List Bypass VulnerabilitiesŚredniaCVE-2024-20297
CVE-2024-20299
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access SSL VPN Authentication Targeted Denial of Service VulnerabilityŚredniaCVE-2024-20331
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Remote Access SSL VPN Authentication Targeted Denial of Service VulnerabilityŚredniaCVE-2024-20493
Cisco Adaptive Security Appliance Software SSH Server Resource Denial of Service VulnerabilityŚredniaCVE-2024-20526
Cisco Adaptive Security Appliance and Firepower Threat Defense Software FXOS CLI Root Privilege Escalation VulnerabilityŚredniaCVE-2024-20370