Security News > 2020 > February > Cisco drops security fixes for Smart Software Manager, security appliances
Cisco has released a new batch of security fixes for a number of its products, including its Smart Software Manager On-Prem solution and its Email Security and Content Security Management Appliances.
The critical flaw is in the High Availability service of the Cisco Smart Software Manager On-Prem.
"The vulnerability is due to a system account that has a default and static password and is not under the control of the system administrator. An attacker could exploit this vulnerability by using this default account to connect to the affected system," Cisco explained.
Cisco Email Security Appliances and Cisco Content Security Management Appliances sport a high-risk DOS vulnerability that can be triggered by an unauthenticated, remote attacker by sending an email message with a crafted attachment through an affected device.
All the other security advisories can be found on Cisco's dedicated page, which should be regularly visited by administrators of Cisco equipment.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/bsZ1Tc_ULQE/