Security Alert (A20-08-07): Multiple Vulnerabilities in Cisco Products
27 August 2020
Cisco released 7 security advisories to address vulnerabilities in Cisco products running FXOS and NX-OS as well as those in Cisco Nexus 3000 and 9000 series switches. A local authenticated attacker could login a Cisco Nexus 3000 or 9000 Series Switches to exploit a logic error vulnerability. An attacker could exploit these vulnerabilities by sending specially crafted packets or malicious messages to an affected system. For details about the vulnerabilities, please refer to the corresponding security advisory at the vendor's website.
Cisco products running Cisco FXOS and NX-OS
Cisco Nexus 3000 and 9000 Series Switches
For detailed information of the affected products, please refer to the section "Affected Products" of corresponding security advisory at vendor's website.
Depending on the vulnerability exploited, a successful exploitation could lead to remote code execution, escalation of privilege, information disclosure or denial of service on an affected system.
Software updates for affected systems are now available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk. For detailed information of the available patches, please refer to the section "Fixed Software" of corresponding security advisory at vendor's website.
System administrators should contact their product support vendors for the fixes and assistance.