Mar 24, 20231 min
On march the 22nd of the current month, Cisco released a new Security Advisory that affects several Cisco Products. Most vulnerabilities addressed allow remote threat actors to be able to exploit these vulnerabilities to gain control of an affected device.
Here's a list of the vulnerabilities:
Cisco IOS XE Software Virtual Fragmentation Reassembly Denial of Service Vulnerability
Cisco IOS XE Software IOx Application Hosting Environment Privilege Escalation Vulnerability
Cisco IOS XE SD-WAN Software Command Injection Vulnerability
Cisco IOS XE Software Fragmented Tunnel Protocol Packet Denial of Service Vulnerability
Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability
Cisco IOS XE Software for Wireless LAN Controllers HTTP Client Profiling Denial of Service Vulnerability
Cisco DNA Center Privilege Escalation Vulnerability
Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches Secure Boot Bypass Vulnerability
Cisco Access Point Software Association Request Denial of Service Vulnerability
We can find the following devices amongts the affected by the afore aforementioned vulnerabilities:
We highly recomend checking the release for more information and affected devices / IOS Versions.