Numéro : AV18-138
Date : Le 15 août 2018
Objet
L'objectif de cet avis est d'attirer l'attention sur des avis de sécurité publiés par Cisco.
Évaluation
Cisco a publié des avis de sécurité pour corriger des vulnérabilités dans plusieurs produits.
Produits visés :
- Cisco Adaptive Security Appliance Web Services
- Cisco Web Security Appliance Web Proxy
- Cisco Unified Communications Manager IM & Presence Service
- Cisco Web Security Appliance Web Proxy
- Cisco Small Business 100 Series and 300 Series Wireless Access Points
- Cisco Registered Envelope Service
- Cisco Email Security Appliance
- Cisco Digital Network Architecture Center
- Cisco Unified Communications Domain Manager
- Cisco Small Business 100 Series and 300 Series
- Cisco ASR 9000 Series Aggregation Services Routers
- Cisco Products Linux Kernel
Références CVE :
CVE-2016-5195, CVE-2018-0296, CVE-2018-0367, CVE-2018-0386, CVE-2018-0409, CVE-2018-0410, CVE-2018-0412, CVE-2018-0415, CVE-2018-0418, CVE-2018-0419, CVE-2018-0427, CVE-2018-0428
Mesures Recommandées
Le CCRIC recommande que les administrateurs de système mettent à l'essai et déploient les mises à jour diffusées par le fournisseur aux applications concernées.
Références (en anglais) :
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-asaftd
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-wsa-dos
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-ucmimps-dos
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-wsa-escalation
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-sb-wap-encrypt
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-res-xss
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-esa-file-bypass
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-dna-injection
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-cucdm-xss
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-csb-wap-dos
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180815-asr-ptp-dos
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-linux