Security News > 2020 > October > Cisco Fixes High-Severity Webex, Security Camera Flaws
Cisco has issued patches for high-severity vulnerabilities plaguing its popular Webex video-conferencing system, its video surveillance IP cameras and its Identity Services Engine network administration product.
Overall, Cisco on Wednesday issued the three high-severity flaws along with 11 medium-severity vulnerabilities.
"A vulnerability in the Cisco Discovery Protocol [CDP] implementation for Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to execute arbitrary code on an affected device or cause the device to reload," according to Cisco's security advisory.
The flaw affects Cisco Webex Teams for Windows releases 3.0.13464.
A final high-severity flaw exists in the web-based management interface of Cisco Identity Services Engine, a tool that enables the creation and enforcement of security and access policies for endpoint devices connected to the company's routers and switches.
News URL
https://threatpost.com/cisco-webex-security-camera-flaws/159969/
Related news
- Cisco creates architecture to improve security and sell you new switches (source)
- Governments issue alerts after 'sophisticated' state-backed actor found exploiting flaws in Cisco security boxes (source)
- Cisco’s Splunk Acquisition Should Help Security Pros See Threats Sooner in Australia and New Zealand (source)