Original release date: November 17, 2020
Cisco has released security updates to address vulnerabilities in Cisco Security Manager. A remote attacker could exploit these vulnerabilities to obtain sensitive information.
The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates.
- Cisco Security Manager Path Traversal Vulnerability cisco-sa-csm-path-trav-NgeRnqgR
- Cisco Security Manager Static Credential Vulnerability cisco-sa-csm-rce-8gjUz9fW