TR-20-870 (Cisco Cisco Firepower Threat Defence Zafiyeti)

Genel Bilgi

Cisco, Cisco Firepower Threat Defence ürününde bulunan DoS zafiyetlerini gideren yama güncellemesi yayınlamıştır.

Etki

Mevcut güvenlik açıklıkları nedeniyle siber saldırganların bu zafiyeti kullanarak saldırılarını gerçekleştirmeleri ihtimal dâhilindedir. Mevcut güncelleme ile kapatılan zafiyetlerin CVE kodları şu şekildedir CVE-2020-3577, CVE-2020-3528, CVE-2020-3529, CVE-2020-3533, CVE-2020-3554, CVE-2020-3555, CVE-2020-3557, CVE-2020-3562, CVE-2020-3563, CVE-2020-3571 ve CVE-2020-3572 .

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), sistem yöneticilerine; Cisco firmasının güvenlik bültenlerini takip etmelerini, bu zafiyet hakkında yayınlanan yama kodunu ivedilikle güncellemelerini önermektedir.

Kaynaklar

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3528

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3529

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3533

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3554

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3555

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3557

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3562

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3563

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3571

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3572

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-3577

2020-10-22