Cisco has released security updates to address vulnerabilities in several of its products, including but not limited to:

• Cisco Secure Firewall Adaptive Security Appliance (ASA) Software

• Cisco Secure Firewall Threat Defense (FTD) Software

• Cisco IOS Software

• Cisco IOS XE Software

• Cisco IOS XR Software

Security Risks

The identified vulnerabilities in Cisco products present a significant security risk, as they may enable attackers to gain unauthorized control over affected systems. For the full list of security patches released by Cisco, please refer to Cisco Security Advisories.

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

• Follow and put in place the security updates shared by Cisco to lower the risk of vulnerability exploitation.

• Apply the required and latest security updates as soon as possible. The released software versions for upgrade include, but are not limited to: Cisco Secure Firewall ASA Software Releases 9.12 and 9.14.

• For IOS, IOS XE, and IOS XR: Install the recommended updates immediately.

• Before updating or patching, please ensure that you have the latest backup that can easily be restored.

For further information and support, please contact the National Cyber Security Authority (NCSA) by email to rwcsirt@ncsa.gov.rw or call us on 9009.

References

• https://sec.cloudapps.cisco.com/security/center/publicationListing.x

• Cisco Security portal

• Cisco Security Advisory/cisco-sa-http-code-exec-WmfP3h3O