Cisco Releases Security Updates for Multiple Products | CISA

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cisco has released security updates to address vulnerabilities in Cisco software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.

Users and administrators are encouraged to review the following advisories and apply necessary updates:
•    Cisco Crosswork Network Services Orchestrator
•    Cisco Crosswork Network Services Orchestrator Privilege Escalation
•    ConfD CLI Privilege Escalation and Arbitrary File Read and Write
•    Cisco Secure Client for Windows with Network Access Manager Module Privilege Escalation
•    Cisco Crosswork Network Services Orchestrator Open Redirect
•    Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Cross-Site Scripting
•    Cisco Secure Email Gateway HTTP Response Splitting
•    Cisco AppDynamics Network Visibility Service Denial of Service

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts

We recently updated our anonymous product survey; we’d welcome your feedback.