Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page.
Therefore, Bhutan Computer Incident Response Team recommended users and administrators to review the following Cisco advisories and apply the necessary updates:
- Cisco Web Security Appliance Privilege Escalation Vulnerability cisco-sa-scr-web-priv-esc-k3HCGJZ
- Cisco Business Process Automation Privilege Escalation Vulnerabilities cisco-sa-bpa-priv-esc-dgubwbH4