TTCSIRT-019.070617: TT-CSIRT Advisory – CISCO Security Updates
Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of a system.
Users and administrators are encouraged to review the following Cisco Security Advisories and apply the necessary updates:
| a) Elastic Services Controller Unauthorized Access Vulnerability – cisco-sa-20170705-esc2 |
| b) Ultra Services Framework UAS Unauthenticated Access Vulnerability – cisco-sa-20170705-uas |
| c) Ultra Services Framework Staging Server Arbitrary Command Execution Vulnerability – cisco-sa-20170705-usf3 |
| d) StarOS CLI Command Injection Vulnerability – cisco-sa-20170705-asrcmd |
| e) Elastic Services Controller Arbitrary Command Execution Vulnerability – cisco-sa-20170705-esc1 |
| f) Ultra Services Framework AutoVNF Symbolic Link Handling Information Disclosure Vulnerability – cisco-sa-20170705-usf1 |
| g) Ultra Services Framework AutoVNF Log File User Credential Information Disclosure Vulnerability – cisco-sa-20170705-usf2 |
