Security News > 2021 > May > Cisco Patches Critical Flaws in SD-WAN, HyperFlex HX Products
Cisco on Wednesday released patches to address tens of vulnerabilities across its product portfolio, including critical flaws in SD-WAN software and the HyperFlex HX data platform.
Two critical vulnerabilities were patched in the SD-WAN vManage software, alongside three high-severity issues.
The second critical bug impacts the web-based management interface of SD-WAN vManage and could allow attackers to gain elevated privileges.
Affected products include IOS XE SD-WAN, SD-WAN vEdge routers, SD-WAN vBond Orchestrator, SD-WAN vEdge cloud routers, and SD-WAN vSmart Controller software.
On Wednesday, Cisco also announced patches for a critical flaw in the web-based management interface of the HyperFlex HX installer virtual machine, which could lead to executing commands as root.
Cisco also released fixes for various medium-severity bugs in SD-WAN and other products.
News URL
Related news
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems (source)
- Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418) (source)
- Cisco scores a perfect CVSS 10 with critical flaw in its wireless system (source)