1. 主页
  2. 保安警报
  3. 保安警报 (A26-03-03)

高危保安警报 (A26-03-03): Cisco 产品多个漏洞


 

发布日期: 2026年 3月 5日

最後更新: 2026年 3月 19日

描述:

Cisco 发布了安全性更新,以应对数个 Cisco 装置及软件的多个漏洞。有关漏洞及攻击向量的资料,请参阅供应商网站的相应安全公告。

有报告指一个远端执行程式码漏洞 (CVE-2026-20131) 正受到攻击。用户应立即为受影响的系统安装修补程式,以降低网络攻击的风险。

 

受影响的系统:

  • Cisco IOS XE Software
  • Cisco FirePOWER Services
  • Cisco Open Source Snort 3
  • Cisco Secure Endpoint Connector
  • Cisco Secure Endpoint Cloud
  • Cisco Secure Firewall Adaptive Security Appliance Software
  • Cisco Secure Firewall Management Center Software
  • Cisco Secure Firewall Threat Defense Software
  • Cisco Security Cloud Control Firewall Management
  • Cisco Webex

有关受影响产品的详细资料,请参阅供应商网站的相应安全公告中有关 “Affected Products” 的部分。

 

影响:

成功利用漏洞可以导致受影响的系统发生远端执行程式码、服务被拒绝、权限提升、泄漏资讯、绕过保安限制、仿冒诈骗或篡改,视乎攻击者利用哪些漏洞而定。

 

建议:

现已有适用于受影响系统的软件更新。受影响系统的系统管理员应遵从产品供应商的建议,立即採取行动以降低风险。有关修补程式的详细资料,请参阅供应商网站的相应安全公告中有关 “Fixed Software” 的部分。

系统管理员可联络其产品支援供应商,以取得修补程式及有关支援。

 

进一步资讯:

  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-dos-FCvLD6vR
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-scpcxt-filecpy-rgeP73nE
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asa-ssh-keybypass-cr5xPUSf
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-aclbypass-dos-CVxVRSvQ
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-desync-n5AVzEQw
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-esp-dos-uv7yD8P5
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ikev2-dos-eBueGdEG
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-luainject-VescqgmS
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-ospf-ZH8PhbSW
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-saml-LktTrwZP
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-vpn-dos-SpOFF2Re
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-vpn-m9sx6MbC
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-webvpn-xss-uwjc4HR
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-css-Fn4QSZ
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-cmd-inject-S9ZM4EJf
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-rce-NKhnULJh
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sql-injection-2qH6CcJd
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-cmd-inj-mTzGZexf
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-dnd-dos-bpEcg7B7
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort-bypass-rLggKzVF
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3-vbavuls-96UcVVed
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3ssl-FBEKYXpH
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-tcp-dos-rHfqnwRg
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftdfmc-dir-trav-wERgjhWq
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-onprem-fmc-authbypass-5JPp45V2
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort3-multi-dos-XFWkWSwz
  • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webex-xss-TZFTbbwN
  • https://www.hkcert.org/tc/security-bulletin/cisco-products-multiple-vulnerabilities_20260305
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20001 (to CVE-2026-20003)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20005 (to CVE-2026-20009)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20013 (to CVE-2026-20018)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20020 (to CVE-2026-20025)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20031
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20039
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20044
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20049 (to CVE-2026-20050)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20052 (to CVE-2026-20054)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20057 (to CVE-2026-20058)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20062 (to CVE-2026-20070)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20073
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20079
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20082
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20100 (to CVE-2026-20103)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20105 (to CVE-2026-20106)
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20131
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-20149


标签 : Cisco , Cisco IOS , Cisco Firepower , Cisco Open Source Snort , Cisco Secure Endpoint , Cisco Secure Firewall , Cisco SCC Firewall Management
标签