Cisco releases the security updates to fix flaws in multiple Cisco products
April 18, 2018, Cisco has released several updates to address vulnerabilities affecting Cisco IOS XE Software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
The affected products are below
- Cisco WebEx Clients Remote Code Execution Vulnerability
- Cisco UCS Director Virtual Machine Information Disclosure Vulnerability for End User Portal
- Cisco StarOS Interface Forwarding Denial of Service Vulnerability
- Cisco IOS XR Software UDP Broadcast Forwarding Denial of Service Vulnerability
- Cisco Firepower Detection Engine Secure Sockets Layer Denial of Service Vulnerability
- Cisco Firepower 2100 Series Security Appliances IP Fragmentation Denial of Service Vulnerability
- Cisco ASA Software, FTD Software, and AnyConnect Secure Mobility Client SAML Authentication Session Fixation Vulnerability
- Cisco Adaptive Security Appliance Application Layer Protocol Inspection Denial of Service Vulnerabilities
- Cisco Adaptive Security Appliance TLS Denial of Service Vulnerability
- Cisco Adaptive Security Appliance Flow Creation Denial of Service Vulnerability
- Cisco Adaptive Security Appliance Virtual Private Network SSL Client Certificate Bypass Vulnerability