漏洞分享 - 思科數個產品存在漏洞
思科數個產品存在漏洞
一、摘要
思科數個產品存在漏洞,其允許遠端攻擊者利用漏洞,並於目標系統觸發阻斷服務、遠端執行任意程式碼、洩漏敏感資料、資料串改、跨網站指令碼、身份驗證繞過。
二、存在風險
思科數個產品存在漏洞,其允許遠端攻擊者利用漏洞,並於目標系統觸發阻斷服務、遠端執行任意程式碼、洩漏敏感資料、資料串改、跨網站指令碼、身份驗證繞過,其影響系統如下:
- Cisco BroadWorks Application Delivery Platform Device Management Software
- Cisco BroadWorks Application Server思科 RV042 Dual WAN VPN Routers
- Cisco BroadWorks Xtended Services Platform
- Cisco CX Cloud Agent
- Cisco IND
- Cisco NSO
- IP Phone 7800 Series
- IP Phone 8800 Series
- Packaged Contact Center Enterprise (CCE)
- RoomOS Software in cloud-aware on-premises operation, which is cloud based
- RV160 VPN Routers
- RV160W Wireless-AC VPN Routers
- RV260 VPN Routers
- RV260P VPN Routers with PoE
- RV260W Wireless-AC VPN Routers
- RV340 Dual WAN Gigabit VPN Routers
- RV340W Dual WAN Gigabit Wireless-AC VPN Routers
- RV345 Dual WAN Gigabit VPN Routers
- RV345P Dual WAN Gigabit POE VPN Routers
- TelePresence CE Software
- Unified CCE
- Unified Contact Center Express (CCX)
- Webex Room Phone
- Webex Share
建議改善措施:請維護廠商協助更新系統或提供解決方案。