Security News > 2020 > January > It’s time to patch your Cisco security solutions again
Cisco has released another batch of security updates and patches for a variety of its offerings, including many of its security solutions.
Among the security holes plugged is CVE-2019-16028, a critical authentication bypass vulnerability affecting the Cisco Firepower Management Center - a device that provides visibility into an organization's network and allows admis to centrally manage critical Cisco network security solutions.
Cisco Email Security, Web Security and Content Security Management Appliances also sport a few flaws, all medium-risk and most found during internal security testing.
Cisco ESAs should be upgraded to v13.0 and later, Cisco WSAs to v11.8.0-382 and later, and Cisco SMAs to v13.0.0.-187 and later.
High-risk vulnerabilities fixed in this bundle include several denial of service bugs affecting Cisco Smart Software Manager On-Prem and the Cisco IOS XR Software.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/sbTaIpoCTGU/
Related news
- Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now (source)
- AMD won’t patch Sinkclose security bug on older Zen CPUs (source)
- Fortra Issues Patch for High-Risk FileCatalyst Workflow Security Vulnerability (source)
- Cisco's Smart Licensing Utility flaws suggest it's pretty dumb on security (source)
- Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast (source)