Number: AV22-032
Date: 19 January 2022
On 19 January 2022 Cisco published Security Advisories to address vulnerabilities in the following products:
- Carrier Packet Transport – all versions
- Cisco RCM for Cisco StarOS – versions prior to 21.25.4
- Cisco Snort – versions prior to 2.9.18 and 3.1.0.100
- ConfD – multiple versions
- Cybervision – versions prior to 4.0.2
- Enterprise NFV Infrastructure Software – versions prior to 3.12.1
- Firepower Threat Defense – multiple versions
- IOS XE SD-WAN – multiple versions
- IOS XR Software – multiple versions
- Meraki MX – multiple versions
- Network Convergence System – multiple versions and platforms
- Network Service Orchestrator – multiple versions
- SD-WAN – multiple versions and platforms
- Ultra Gateway Platform – versions prior to 6.15.0
- Unified Threat Defense – multiple versions
- Virtual Topology System – versions prior to 2.6.5
Exploitation of these vulnerabilities could lead to remote code execution or denial of service.
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates when available.