TR-19-031 (Cisco Güvenlik Güncellemeleri Yayınladı)

Genel Bilgi

Cisco; WebEx  Browser Extension, Small Business RV320 ve RV325 Routers, IOS XE Yazılımı, IOS ve IOS XE Yazılımı Kısa Mesaj Servisi, Aggregation Services Router 900 Route Switch Processor 3 OSPFv2, IOS ve IOS XE Yazılımı Network Plug-ve-Play Agent , IOS ve IOS XE Yazılımı Network-Based Application Recognition, IOS Yazılımı NAT64, IOS ve IOS XE Yazılımı ISDN Arayüzü, IOS ve IOS XE Yazılımı IP Service Level Agreement, IOS XE Yazılımı Catalyst 4500 Cisco Discovery Protokolü, IOS XE Yazılımı Encrypted Traffic Analytics, IOS ve IOS XE Yazılımı Cluster Management Protokolü, IOS XE Yazılımı Performance Routing Sürüm 3, IOS XE Yazılımı Gigabit Ethernet Yönetim Arayüzü, IOS ve IOS XE Yazılımı Hot Stveby Router Protokolü, IOS ve IOS XE Yazılımı, IOS ve IOS XE Yazılımı Smart Call Home, IOS Yazılımı Catalyst 6500 Serisi yazılım ve ürünleri üzerinde bulunan çeşitli zafiyetleri gidermeyi hedefleyen güvenlik güncellemeleri yayınladı.

 

Etki

Kritik önem düzeyindeki mevcut güvenlik açıklıkları nedeniyle etkilenen sistemlerin siber saldırganlar tarafından kontrol altına alınması ihtimal dâhilindedir.

 

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), kullanıcı ve sistem yöneticilerine yüksek önem derecesindeki zafiyetler için Cisco tarafından yayınlanan ve aşağıda belirtilen güvenlik güncellemelerini incelemelerini ve ilgili güvenlik tedbirlerini almalarını tavsiye etmektedir.

 

Kaynaklar

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170124-webex

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-rv-info

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-rv-inject

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-xeid

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-xecmd

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-sms-dos

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-rsp3-ospf

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-pnp-cert

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nat64

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-isdn

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-ipsla-dos

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-privesc

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-pe

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-cmdinject

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-cmdinj

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-evss

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-eta-dos

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-cmp-dos

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-afu

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-pfrv3

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-mgmtacl

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-ios-infoleak

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-info

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-call-home-cert

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-c6500

https://tools.cisco.com/security/center/publicationListing.x

https://www.us-cert.gov/ncas/current-activity/2019/03/27/Cisco-Releases-Security-Advisories-Multiple-Products

 

2019-04-01