Cisco has released several updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
NCCIC/US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates.
- Cisco Prime Collaboration Provisioning Hard-Coded Password Vulnerability cisco-sa-20180307-cpcp
- Cisco Secure Access Control System Java Deserialization Vulnerability cisco-sa-20180307-acs2
- Cisco Web Security Appliance FTP Authentication Bypass Vulnerability cisco-sa-20180307-wsa