12 C
London
Saturday, September 23, 2017

Cisco IOS Software Network Address Translation Vulnerabilities

The Cisco IOS Software implementation of the network address translation (NAT) feature contains three vulnerabilities when translating IP packets that could allow an unauthenticated, remote attacker to cause a denial of service (D...

OpenSSL Heartbeat Extension Vulnerability in Multiple Cisco Products

Multiple Cisco products incorporate a version of the OpenSSL package affected by a vulnerability that could allow an unauthenticated, remote attacker to retrieve memory in chunks of 64 kilobytes from a connected client or server. ...

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2016

Product Cisco Bug ID Fixed Release Availability Cisco MeetingPlace CSCuy54660 Cisco SocialMiner CSCuy74298 Cisco WebEx Meetings Server versions 1.x CSCuy54463 2.6.2 (15-Apr-2016) Cisco WebEx Meetings Server versions 2.x CSCuy54463 2.6.2 (15-Apr-2016) Cisco WebEx Node for MCS CSCuy54457 Cisco Agent for OpenFlow CSCuy54595 Cisco AnyConnect Secure Mobility Client for Android CSCuy54599 Cisco AnyConnect Secure Mobility Client for Android CSCuy54600 Cisco AnyConnect Secure Mobility Client for Linux CSCuy54599 Cisco AnyConnect Secure Mobility Client for OS X CSCuy54599 Cisco AnyConnect Secure Mobility Client for Windows CSCuy54599 Cisco AnyConnect Secure Mobility Client for iOS CSCuy54599 Cisco Jabber Guest 10.0(2) CSCuy54659 Cisco Jabber Software Development Kit CSCuy54657 Cisco Jabber for Android CSCuy54676 Cisco Jabber for Mac CSCuy59818 11.6 (23-Mar-2016)11.7 (23-Mar-2016) Cisco Jabber for Windows CSCuy62564 Cisco MMP server CSCuy54470 Cisco WebEx Meetings Client - Hosted CSCuy54468 Cisco WebEx Meetings Client - On-Premises CSCuy54461 Cisco WebEx Meetings for Android CSCuy54458 Cisco WebEx Meetings for WP8 CSCuy54460 JCF components CSCuy56053 11.6 (23-Mar-2016) WebEx Meetings Server - SSL Gateway CSCuy54464 2.6.2 (15-Apr-2016) WebEx Recording Playback Client CSCuy54467 Cisco ACE 30 Application Control Engine Module CSCuy54474 Cisco ACE 4710 Application Control Engine (A5) CSCuy54474 Cisco Application and Content Networking System (ACNS) (*) CSCuy54560 5.5.41 (15-Apr-2016) Cisco InTracer CSCuy54435 Cisco Network Admission Control (NAC) CSCuy54561 Cisco Visual Quality Experience Server CSCuy54558 Cisco Visual Quality Experience Tools Server CSCuy54558 Cisco Wide Area Application Services (WAAS) CSCuy58094 Cisco ASA CX and Cisco Prime Security Manager CSCuy54575 9.3.4.5 (30-May-2016) Cisco ASA Next-Generation Firewall Services CSCuy54572 Cisco Adaptive Security Appliance (ASA) CSCuy54567 Cisco Clean Access Manager CSCuy54562 Cisco Content Security Appliance Updater Servers CSCuy54455 Cisco Content Security Management Appliance (SMA) CSCuy53668 Cisco Email Security Appliance (ESA) CSCuy53654 10.0 (late June 2016) Cisco FireSIGHT System Software CSCuy54453 Cisco IPS (*) CSCuy54601 7.1(11) Patch 2 (Aug. 2016)7.3(05) Patch 2 (Nov 2016) Cisco Identity Services Engine (ISE) CSCuy54586 Cisco IronPort Encryption Appliance (IEA) CSCuy54452 No fix is expected because the product is EoL. Cisco NAC Guest Server CSCuy54564 Cisco NAC Server CSCuy54563 Cisco Physical Access Control Gateway CSCuy54579 Cisco Secure Access Control Server (ACS) CSCuy54597 Cisco Virtual Security Gateway for Microsoft Hyper-V CSCuy54498 Cisco Web Security Appliance (WSA) CSCuy54456 10.0 (late June 2016) Cisco Application Networking Manager CSCuy54475 Cisco Application Policy Infrastructure Controller (APIC) CSCuy54481 Cisco Cloupia Unified Infrastructure Controller CSCuy54478 Affected versions will be updated with 5.5 release. Cisco Digital Media Manager CSCuy54532 5.3 (28-Apr-2016)5.3.6 (28-Apr-2016)5.3.6(RB1) (28-Apr-2016)5.3.6(RB2) (28-Apr-2016)5.4 (28-Apr-2016)5.4.1 (28-Apr-2016)5.4.1(RB1) (28-Apr-2016)5.4.1(RB2) (28-Apr-2016) Cisco MATE Collector CSCuy58728 Cisco MATE Design CSCuy58728 Cisco MATE Live CSCuy58728 Cisco Management Appliance (MAP) (*) CSCuy54443 Affected systems will be updated April 8, 2016. Cisco Mobile Wireless Transport Manager CSCuy54523 Cisco Multicast Manager CSCuy54509 Cisco NetFlow Generation Appliance CSCuy54519 Cisco Network Analysis Module CSCuy54516 Cisco Packet Tracer CSCuy54539 7.0 (29-Jul-2016) Cisco Policy Suite (CPS) CSCuy58727 9.1 (30-Apr-2016) Cisco Prime Access Registrar CSCuy54512 7.1 (15-Apr-2016) Cisco Prime Collaboration Assurance CSCuy54522 Cisco Prime Collaboration Deployment CSCuy54636 Cisco Prime Collaboration Provisioning CSCuy54521 All affected versions have been updated. Cisco Prime Data Center Network Manager (DCNM) CSCuy54479 10.0(1) (April 2016) Cisco Prime Home CSCuy54520 Cisco Prime IP Express (*) CSCuy54514 Cisco Prime Infrastructure Standalone Plug and Play Gateway CSCuy54517 Cisco Prime Infrastructure CSCuy54518 Cisco Prime LAN Management Solution (LMS - Solaris) CSCuy54508 Cisco Prime License Manager CSCuy54540 Cisco Prime Network Registrar (CPNR) (*) CSCuy54510 Cisco Prime Network Services Controller (*) CSCuy54525 3.4.2 (30-May-2016) Cisco Prime Network CSCuy54504 4.3 (July 2016) Cisco Prime Optical for SPs CSCuy54513 Cisco Prime Performance Manager CSCuy54505 1.7SP4 (27-Apr-2016) Cisco Prime Security Manager CSCuy54569 9.3.4.5 (30-May-2016) Cisco Security Manager CSCuy54524 Cisco Show and Share (SnS) CSCuy54542 Cisco UCS Central CSCuy54500 Cisco Unified Intelligence Center (CUIC) CSCuy74294 Local Collector Appliance (LCA) CSCuy54701 StealthWatch FlowCollector NetFlow StealthWatch FlowCollector sFlow StealthWatch IDentity StealthWatch Management Console (SMC) StealthWatch UDP Director (formerly Flow Replicator) Cisco 910 Industrial Router CSCuy54697 SSLv2 is disabled on IR910. Cisco ASR 5000 Series CSCuy54436 Cisco Connected Grid Router - CGOS (*) CSCuy54477 16.2(00.192) (7-Apr-2016) Cisco Connected Grid Router CSCuy54626 Affected systems have been upgraded. Cisco IOS Software and Cisco IOS XE Software CSCuy54623 Cisco IOS XR Software CSCuy54527 Cisco MDS 9000 Series Multilayer Switches CSCuy54488 7.3.1.DX (August 2016)6.2.17 (June 2016)7.3.1.NX ( August 2016)7.0.3.I3 (May 2016)8.3 (November 2016) Cisco Nexus 1000V InterCloud (*) CSCuy54485 1.0.1f (21-Mar-2016)1.0.1h4.4 (21-Mar-2016) Cisco Nexus 1000V Series Switches (ESX) CSCuy54492 5.2(1)SV3(2.0.200) (5-Apr-2016) Cisco Nexus 3000 Series Switches CSCuy54488 7.3.1.DX (August 2016)6.2.17 (June 2016)7.3.1.NX (August 2016)7.0.3.I3 (May 2016)8.3 (November 2016) Cisco Nexus 4000 Series Blade Switches CSCuy54603 4.1(2)E1(1q) (30-Jun-2016) Cisco Nexus 5000 Series Switches CSCuy54488 7.3.1.DX (August 2016)6.2.17 (June 2016)7.3.1.NX (August 2016)7.0.3.I3 (May 2016)8.3 (November 2016) Cisco Nexus 6000 Series Switches CSCuy54488 7.3.1.DX (August 2016)6.2.17 (June 2016)7.3.1.NX (August 2016)7.0.3.I3 (May 2016)8.3 (November 2016) Cisco Nexus 7000 Series Switches CSCuy54488 7.3.1.DX (August 2016)6.2.17 (June 2016)7.3.1.NX (August 2016)7.0.3.I3 (May 2016)8.3 (November 2016) Cisco Nexus 9000 (ACI/Fabric Switch) CSCuy54484 2.0.1x (June 2016) Cisco Nexus 9000 Series (standalone, running NX-OS) CSCuy57853 7.0(3)I4(1) (25-Mar-2016)7.0(3)I4(0.42) (25-Mar-2016) Cisco ONS 15454 Series Multiservice Provisioning Platforms (*) CSCuy54696 Cisco OnePK All-in-One VM CSCuy54577 Cisco Service Control Operating System CSCuy54627 Cisco Sx220 Switches CSCuy54591 1.4.5.1 (May 2016) Cisco Sx300 Switches CSCuy54592 1.4.5.1 (May 2016) Cisco Sx500 Switches CSCuy54593 1.4.5.1 (May 2016) Cisco Common Services Platform Collector CSCuy54437 Affected systems have been updated. Cisco Standalone Rack Server CIMC CSCuy54501 Cisco Unified Computing System (Management software) CSCuy54576 Cisco Unified Computing System B-Series (Blade) Servers (*) CSCuy54499 2.2(3d) and later are not affected. Please upgrade to this version or later for B-Series Servers. Cisco Virtual Security Gateway CSCuy54497 Cisco 190 ATA Series Analog Terminal Adaptor CSCuy54633 Cisco ATA 187 Analog Telephone Adaptor CSCuy54665 Cisco Agent Desktop for Cisco Unified Contact Center Express CSCuy54639 Cisco Agent Desktop CSCuy54687 Cisco Computer Telephony Integration Object Server (CTIOS) CSCuy54688 Cisco Emergency Responder CSCuy54646 Cisco Finesse CSCuy54645 Cisco Hosted Collaboration Mediation Fulfillment CSCuy54652 Cisco IM and Presence Service (CUPS) CSCuy54649 Cisco IP Interoperability and Collaboration System (IPICS) CSCuy54549 Cisco Jabber for iOS CSCuy54655 Cisco MediaSense CSCuy54668 Cisco Packaged Contact Center Enterprise CSCuy54689 Cisco Paging Server (Informacast) CSCuy54654 Cisco Paging Server CSCuy54654 Cisco SPA112 2-Port Phone Adapter CSCuy54587 Cisco SPA122 ATA with Router CSCuy54587 Cisco SPA232D Multi-Line DECT ATA CSCuy54587 Cisco SPA30X Series IP Phones CSCuy54590 Cisco SPA50X Series IP Phones CSCuy54590 Cisco SPA51X Series IP Phones CSCuy54590 Cisco SPA525G CSCuy54588 Cisco TAPI Service Provider (TSP) CSCuy54635 Cisco Unified 6901 IP Phones CSCuy54661 Cisco Unified 6945 IP Phones CSCuy54666 Cisco Unified 7800 Series IP Phones CSCuy54672 Cisco Unified 8831 Series IP Conference Phone CSCuy54663 Cisco Unified 8945 IP Phone CSCuy54662 Cisco Unified 8961 IP Phone CSCuy54651 Cisco Unified 9951 IP Phone CSCuy54651 Cisco Unified 9971 IP Phone CSCuy54651 Cisco Unified Attendant Console Advanced CSCuy54630 Cisco Unified Attendant Console Business Edition CSCuy54630 Cisco Unified Attendant Console Department Edition CSCuy54630 Cisco Unified Attendant Console Enterprise Edition CSCuy54630 Cisco Unified Attendant Console Premium Edition CSCuy54630 Cisco Unified Attendant Console Standard CSCuy54631 Cisco Unified Communications Domain Manager CSCuy54640 11.5.1 (Aug 2016) Cisco Unified Communications Manager (UCM) CSCuy54634 Cisco Unified Communications Manager Session Management Edition (SME) CSCuy54634 Cisco Unified Communications for Microsoft Lync CSCuy54641 Cisco Unified Contact Center Enterprise CSCuy54688 Cisco Unified Contact Center Express CSCuy74300 Cisco Unified IP Conference Phone 8831 for Third-Party Call Control CSCuy54629 Cisco Unified IP Phone 7900 Series CSCuy54674 Cisco Unified Intelligent Contact Management Enterprise CSCuy54688 Cisco Unified Wireless IP Phone CSCuy54681 SSLv2 is disabled. Cisco Unified Workforce Optimization CSCuy54680 WFO 10.5 (31-Mar-2016)WFO 11.0 (15-Apr-2016) Cisco Unity Connection (UC) CSCuy54637 Cisco Virtualization Experience Media Engine CSCuy54679 11.7 (28-Jul-2016) Cisco AnyRes Live (CAL) CSCuy54616 9.6.4 (April 2016) Cisco DCM Series 9900-Digital Content Manager CSCuy54502 Cisco Digital Media Players (DMP) 4300 Series CSCuy54531 5.4(1) (10-Apr-2016) Cisco Digital Media Players (DMP) 4400 Series CSCuy54531 5.4(1) (10-Apr-2016) Cisco Edge 300 Digital Media Player CSCuy54698 1.6RB4_4 (15-Apr-2016) Cisco Edge 340 Digital Media Player CSCuy54700 Affected systems will be updated by April 15, 2016. Cisco Enterprise Content Delivery System (ECDS) CSCuy54533 2.6.7 (15-Apr-2016) Cisco Expressway Series (*) CSCuy54547 Cisco Headend System Release (*) CSCuy54611 1.06 (1-May-2016)1.1.3 (1-May-2016)2.0.10 (1-May-2016)2.1.2 (1-May-2016)3.0.4 (1-May-2016) Cisco Media Experience Engines (MXE) (*) CSCuy54538 Cisco Media Services Interface CSCuy54528 Cisco Model D9485 DAVIC QPSK (*) CSCuy54612 1.2.4 (31-Aug-2016) Cisco TelePresence 1310 (*) CSCuy54628 Cisco TelePresence Conductor CSCuy54529 SSLv2 is disabled in software versions XC4.0 and later. Cisco TelePresence Content Server (TCS) CSCuy54545 Cisco TelePresence ISDN GW 3241 CSCuy54534 Cisco TelePresence ISDN GW MSE 8321 CSCuy54534 Cisco TelePresence ISDN Link CSCuy54535 Cisco TelePresence MCU (8510, 8420, 4200, 4500 and 5300) CSCuy54536 Cisco TelePresence Serial Gateway Series CSCuy54541 Cisco TelePresence Server 8710, 7010 CSCuy54546 Cisco TelePresence Server on Multiparty Media 310, 320 CSCuy54546 Cisco TelePresence Server on Virtual Machine CSCuy54546 Cisco TelePresence Supervisor MSE 8050 CSCuy54537 Cisco TelePresence System 1000 (*) CSCuy54628 Cisco TelePresence System 1100 (*) CSCuy54628 Cisco TelePresence System 1300 (*) CSCuy54628 Cisco TelePresence System 3000 Series (*) CSCuy54628 Cisco TelePresence System 500-32 (*) CSCuy54628 Cisco TelePresence System 500-37 (*) CSCuy54628 Cisco TelePresence TX 9000 Series (*) CSCuy54628 Cisco TelePresence Video Communication Server (VCS) (*) CSCuy54547 Cisco VEN501 Wireless Access Point CSCuy54550 Cisco Video Distribution Suite for Internet Streaming (VDS-IS/CDS-IS) CSCuy54553 4.3.2 (May 2016) Cisco Video Surveillance 3000 Series IP Cameras CSCuy54583 Cisco Video Surveillance 3000 Series IP Cameras CSCuy54584 SSLv2 is not supported. Cisco Video Surveillance 4000 Series High-Definition IP Cameras CSCuy54580 Cisco Video Surveillance 4300E/4500E High-Definition IP Cameras CSCuy54581 Cisco Video Surveillance 6000 Series IP Cameras CSCuy54583 Cisco Video Surveillance 6000 Series IP Cameras CSCuy54584 SSLv2 is not supported. Cisco Video Surveillance 7000 Series IP Cameras CSCuy54583 Cisco Video Surveillance 7000 Series IP Cameras CSCuy54584 SSLv2 is not supported. Cisco Video Surveillance Media Server CSCuy54585 7.8 (1-Jul-2016) Cisco Video Surveillance PTZ IP Cameras CSCuy54583 Cisco Video Surveillance PTZ IP Cameras CSCuy54584 SSLv2 is not supported. Cisco Videoscape Control Suite CSCuy54551 3.6.0 (30-Apr-2016) Cloud Object Store (COS) (*) CSCuy54552 3.8.0 (30-Mar-2016) Tandberg Codian ISDN GW 3210/3220/3240 CSCuy54534 Tandberg Codian MSE 8320 model CSCuy54534 Cisco Aironet 2700 Series Access Point CSCuy54506 Cisco Mobility Services Engine (MSE) CSCuy58090 Cisco Wireless LAN Controller (WLC) (*) CSCuy58091 8.0 (April 2016)8.3 (May 2016) Cisco Intelligent Automation for Cloud CSCuy54548 Cisco Proactive Network Operations Center CSCuy54441 Cisco Registered Envelope Service (CRES) CSCuy54451 Cisco Services Provisioning Platform (SPP) CSCuy54682 Cisco Smart Care CSCuy54565 Cisco Universal Small Cell 5000 Series running V3.4.2.x software CSCuy54610 Cisco Universal Small Cell 7000 Series running V3.4.2.x software CSCuy54610 Cisco Universal Small Cell usc-iuh CSCuy54608 Cisco WebEx Connect client (Windows) CSCuy54465 Cisco WebEx Meeting Center CSCuy54473 Cisco WebEx Meetings (Meeting Center, Training Center, Event Center, Support Center) CSCuy54472 Cisco WebEx Messenger Service CSCuy54466 Network Health Framework (NHF) CSCuy54702 Network Performance Analytics (NPA) CSCuy54703 Partner Supporting Service (PSS) 1.x CSCuy54568 Serial Number Assessment Service (SNAS) CSCuy54571 Services Analytic Platform CSCuy54445 Small Cell factory recovery root filesystem V2.99.4 or later CSCuy54607

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: May 2016

Product Cisco Bug ID Fixed Release Availability Cisco MeetingPlace CSCuz52556 CWMS 2.7 (Available) Cisco SocialMiner CSCuz63938 11.5.1 (Available) Cisco WebEx Meetings Server versions 1.x CSCuz52375 "2.6.1.2109 (Available)2.7.1.12 (Available)" Cisco WebEx Meetings Server versions 2.x CSCuz52375 "2.6.1.2109 (Available)2.7.1.12 (Available)" Cisco WebEx Node for MCS CSCuz52370 3.12.9.8 (Available) Cisco Agent for OpenFlow CSCuz52503 2.1.5 (N3K/N9K) (Available) 2.0.7 (N7K) (Available) 2.0.7 (cat3k/cat4k) (Available) Cisco AnyConnect Secure Mobility Client for Android CSCuz52506 4.3 for WindowsLinuxOS X (10-JUN-2016) 4.2 for WindowsLinuxOS X (16-JUN-2016) 4.0 for AndroidiOS (30-JUN-2016) Cisco AnyConnect Secure Mobility Client for Android CSCuz52507 4.3 for WindowsLinuxOS X (Available) 4.2 for WindowsLinuxOS X (Available) 4.0 for AndroidiOS (Available) Cisco AnyConnect Secure Mobility Client for Linux CSCuz52506 4.3 for WindowsLinuxOS X (10-JUN-2016) 4.2 for WindowsLinuxOS X (16-JUN-2016) 4.0 for AndroidiOS (30-JUN-2016) Cisco AnyConnect Secure Mobility Client for OS X CSCuz52506 4.3 for WindowsLinuxOS X (10-JUN-2016) 4.2 for WindowsLinuxOS X (16-JUN-2016) 4.0 for AndroidiOS (30-JUN-2016) Cisco AnyConnect Secure Mobility Client for Windows CSCuz52506 4.3 for WindowsLinuxOS X (10-JUN-2016) 4.2 for WindowsLinuxOS X (16-JUN-2016) 4.0 for AndroidiOS (30-JUN-2016) Cisco AnyConnect Secure Mobility Client for iOS CSCuz52506 4.3 for WindowsLinuxOS X (10-JUN-2016) 4.2 for WindowsLinuxOS X (16-JUN-2016) 4.0 for AndroidiOS (30-JUN-2016) Cisco Jabber Guest 10.0(2) CSCuz52554 11.0 (Available) Cisco Jabber Software Development Kit CSCuz52552 11.7 (Available) Cisco Jabber for Android CSCuz52568 11.6 MR (Available) Cisco Jabber for Mac CSCuz52551 11.7 (Available) Cisco Jabber for Windows CSCuz60563 11.6(1) (Available) Cisco MMP server CSCuz52380 3.10.0 (Available) Cisco WebEx Meetings Client - Hosted CSCuz52379 T31R1SP6 (15-DEC-2016) Cisco WebEx Meetings Client - On Premises CSCuz52374 2.7.1.12 (Available)2.6.1.2109 (Available) Cisco WebEx Meetings for Android CSCuz52371 A patch file is available for vulnerable releases Cisco WebEx Meetings for WP8 CSCuz52373 No further releases are planned WebEx Meetings Server - SSL Gateway CSCuz52376 "2.6.1.2109 (Available)2.7.1.12 (Available)" WebEx Recording Playback Client CSCuz52378 T31R1SP6 (DEC-2016) Cisco ACE 30 Application Control Engine Module CSCuz52383 No fix available Cisco ACE 4710 Application Control Engine (A5) CSCuz52383 No fix available Cisco Application and Content Networking System (ACNS) CSCuz52468 5.5.41 (31-JUL-2016) Cisco InTracer CSCuz52350 Product is EOL so no fix is expected. Cisco Network Admission Control (NAC) CSCuz52469 No fix available Cisco Visual Quality Experience Server CSCuz52466 3.11(3.1) (Available) Cisco Visual Quality Experience Tools Server CSCuz52466 3.11(3.1) (Available) Cisco Wide Area Application Services (WAAS) CSCuz52481 5.5.7 (30-JUN-2016)6.2.3 (29-JUL-2016) Cisco ASA CX and Cisco Prime Security Manager CSCuz52482 9.5.4.3 (30-MAY-2016) Cisco ASA Next-Generation Firewall Services CSCuz52479 R2.1.1 (Available) Cisco Adaptive Security Appliance (ASA) CSCuz52474 All affected systems have been updated. Cisco Clean Access Manager CSCuz52470 No fix available Cisco Content Security Management Appliance (SMA) CSCuz52367 10.5 (APR-2017) Cisco FireSIGHT System Software CSCuz52366 6.0.1.2 (27-JUN-2016) Cisco IPS CSCuz52508 No fix available Cisco Identity Services Engine (ISE) CSCuz52493 2.2.1 (Available) Cisco Email Security Appliance (ESA) CSCuz52363 11.0 (APR-2017) Cisco IronPort Encryption Appliance (IEA) CSCuz52365 No fix available Cisco NAC Guest Server CSCuz52472 No fix available Cisco NAC Server CSCuz52471 No fix available Cisco Physical Access Control Gateway CSCuz52487 Cisco Secure Access Control Server (ACS) CSCuz52504 5.8 patch 5 (JUL-2016) Cisco Secure Access Control System (ACS) CSCuz52505 5.8 patch 5 (Available) Cisco Virtual Security Gateway for Microsoft Hyper-V CSCuz52403 5.2(1) (20-AUG-2016)VSG2(1.4) (20-AUG-2016) Cisco Web Security Appliance (WSA) CSCuz52369 10.5 (MAR-2017) Lancope Stealthwatch SMC   6.7.3   End of May 20166.8.0   End of May 20166.8.1   June 20166.8.2   End of Jun 2016 Lancope Stealthwatch FlowCollector NetFlow   6.7.3   End of May 20166.8.0   End of May 20166.8.1   June 20166.8.2   End of Jun 2016 Lancope Stealthwatch FlowCollector sFlow   6.7.3   End of May 20166.8.0   End of May 20166.8.1   June 20166.8.2   End of Jun 2016 Lancope Stealthwatch FlowSensor   6.7.3   End of May 20166.8.0   End of May 20166.8.1   June 20166.8.2   End of Jun 2016 Lancope Stealthwatch UDP Director   6.7.3   End of May 20166.8.0   End of May 20166.8.1   June 20166.8.2   End of Jun 2016 Cisco Application Networking Manager CSCuz52384 Contact TAC for upgrade options Cisco Application Policy Infrastructure Controller (APIC) CSCuz52389 11.6 MR (Available) Cisco Digital Media Manager CSCuz52441 5.3.0 (Available)5.3.6 (Available)5.3.6(RB1) (Available)5.3.6(RB2) (Available)5.4.0 (Available)5.4.1 (Available)5.4.1(RB1) (Available)5.4.1(RB2) (Available) Cisco MATE Collector CSCuz52583 6.3.5dev-19-g2329292 (Available)6.4dev-2206-g9361bc4 (Available)6.4dev-2250-g50ed411 (Available) Cisco MATE Design CSCuz52583 6.3.5dev-19-g2329292 (Available)6.4dev-2206-g9361bc4 (Available)6.4dev-2250-g50ed411 (Available) Cisco MATE Live CSCuz52583 6.3.5dev-19-g2329292 (Available)6.4dev-2206-g9361bc4 (Available)6.4dev-2250-g50ed411 (Available) Cisco Management Appliance (MAP) CSCuz52355 0.9.8e (Available)0.9.8-39.el5_11 (08-JUN-2016) Cisco Mobile Wireless Transport Manager CSCuz52431 No fix expected. Cisco NetFlow Generation Appliance CSCuz52426 Affected systems will be updated (01-AUG-2016) Cisco Network Analysis Module CSCuz52423 6.3.1 (Available) Cisco Packet Tracer CSCuz52451 7.0 (Available) Cisco Policy Suite (CPS) CSCuz52587 10.0 (Available) Cisco Prime Access Registrar CSCuz52418 7.0.1.7 (JUN-2016)7.1.x (JUN-2016)7.2 (SEP-2016) Cisco Prime Collaboration Assurance CSCuz52430 11.5 SP1 (Aug. 2016) Cisco Prime Collaboration Deployment CSCuz52537 11.5 (Available) Cisco Prime Collaboration Provisioning CSCuz52429 11.2 (Available) Cisco Prime Data Center Network Manager (DCNM) CSCuz52387 10.0(1.28)S0 (Available) Cisco Prime IP Express CSCuz52421 Cisco Prime Infrastructure Standalone Plug and Play Gateway CSCuz52424 Cisco Prime Infrastructure CSCuz52425 3.1.1 (JUN-2016) Cisco Prime LAN Management Solution (LMS - Solaris) CSCuz52413 No fix is expected. Cisco Prime License Manager CSCuz52452 11.5 (JUN-2016) Cisco Prime Network Registrar (CPNR) CSCuz52415 Cisco Prime Network Services Controller CSCuz52433 3.4.2 (AUG-2016) Cisco Prime Network CSCuz52408 Affected systems will be updated (30-Jun-2016) Cisco Prime Optical for SPs CSCuz52420 10.6 (Available) Cisco Prime Performance Manager CSCuz52409 1.7.0.6 (30-JUL-2016) Cisco Prime Security Manager CSCuz52477 9.5.4.3 (Available) Cisco Security Manager CSCuz52432 4.12 (Available) Cisco UCS Central CSCuz52405 1.5(1a) (Available) Cisco Unified Intelligence Center (CUIC) CSCuz63935 11.5.1 (Available) Local Collector Appliance (LCA) CSCuz52524 2.2.12 (20-MAY-2016) Cisco ASR 5000 Series CSCuz52351 19.4.0 (30-JUN-2016)20.2.0 (29-JUL-2016)21.0.0 (30-SEP-2016) Cisco Connected Grid Router - CGOS CSCuz52385 15.6.2.15T (5-JUN-2016) Cisco Connected Grid Router CSCuz52529 15.6.2.15T (05-JUN-2016) Cisco IOS Software and Cisco IOS-XE Software CSCuz52528 "15.4(1)IA1.73 (Available)15.6(2)T0.1 (Available)15.6(2.19)T (Available)16.3(0.232) (Available)16.4(0.49) (Available)" Cisco IOS-XR CSCuz52437 Affected systems will be updated (08-Jun-2016) Cisco MDS 9000 Series Multilayer Switches CSCuz52394 6.2.17 (MDS) (JUN-2016)7.3.1DX (N7k and MDS) (AUG-2016)7.3.1NX (N5k/N6k) (AUG-2016)8.3 (N3k/N9k) (NOV-2016) Cisco Nexus 1000V InterCloud CSCuz52393 Affected systems will be updated (30-Jun-2016) Cisco Nexus 1000V Series Switches (ESX) CSCuz52399 5.2(1)SV3(2.1) (30-JUN-2016) Cisco Nexus 1000V Series Switches CSCuz52397 5.2(1)SV3(2.1) (Available) Cisco Nexus 3X00 Series Switches CSCuz52400 6.0(2)A8(1) (Available) Cisco Nexus 4000 Series Blade Switches CSCuz52512 0.9.8zf (Available) Cisco Nexus 5000 Series Switches CSCuz52401 7.3.1 (Available) Cisco Nexus 6000 Series Switches CSCuz52395 6.2.17 (MDS) (JUN-2016)7.3.1DX (N7k and MDS) (AUG-2016)7.3.1NX (N5k/N6k) (AUG-2016)8.3 (N3k/N9k) (NOV-2016) Cisco Nexus 7000 Series Switches CSCuz52395 6.2.17 (MDS) (JUN-2016)7.3.1DX (N7k and MDS) (AUG-2016)7.3.1NX (N5k/N6k) (AUG-2016)8.3 (N3k/N9k) (NOV-2016) Cisco Nexus 9000 (ACI/Fabric Switch) CSCuz52391 12.0(0.133) (Available) Cisco Nexus 9000 Series (standalone, running NxOS) CSCuz52396 10.6(3.11002.7) Cisco ONS 15454 Series Multiservice Provisioning Platforms CSCuz52486 10.6.1 (30-JUN-2016) Cisco OnePK All-in-One VM CSCuz52485 No fix available Cisco Service Control Operating System CSCuz52530 5.1 (Available)5.2 (Available) Cisco Sx220 switches CSCuz52497 1.4.7 (NOV-2016) Cisco Sx300 switches CSCuz52500 1.4.7 (NOV-2016) Cisco Sx500 switches CSCuz52502 1.4.7 (NOV-2016) Cisco Cloupia Unified Infrastructure Controller CSCuz52386 5.5 (Available) Cisco Common Services Platform Collector CSCuz52352 1.10 (SEPT-2016) Cisco Standalone rack server CIMC CSCuz52406 2.0(13) (Available) Cisco Unified Computing System (Management software) CSCuz52483 3.1.2 (AUG-2016) Cisco Virtual Security Gateway CSCuz52402 5.2(1) (20-AUG-2016)VSG2(1.4) (20-AUG-2016) Cisco 190 ATA Series Analog Terminal Adaptor CSCuz52534 1.3.0 (APR-2017) Cisco 8800 Series IP Phones - VPN Feature CSCuz52565 11.5.2 (12-DEC-2016) Cisco ATA 187 Analog Telephone Adaptor CSCuz52560 9.2.5 (05-APR-2017) Cisco Agent Desktop for Cisco Unified Contact Center Express CSCuz52539 No fix is expected Cisco Computer Telephony Integration Object Server (CTIOS) CSCuz52360 11.51 (Available) Cisco DX Series IP Phones CSCuz52563 No fix is expected Cisco Emergency Responder CSCuz52543 11.5 (Available) Cisco Finesse CSCuz63940 11.5.1 (09-AUG-2016) Cisco Hosted Collaboration Mediation Fulfillment CSCuz52547 10.6(1.99000.17) (Available)10.6(1.99000.18) (Available)10.6(3.11002.7) (Available) Cisco IM and Presence Service (CUPS) CSCuz52545 11.5 (Available) Cisco IP Interoperability and Collaboration System (IPICS) CSCuz52461 5.0 (30-AUG-2016) Cisco Jabber for Apple iOS CSCuz52550 11.7.0 (Available) Cisco MediaSense CSCuz52562 11.5.1 (Available) Cisco Paging Server (Informacast) CSCuz52548 11.5.1 (Available) Cisco Paging Server CSCuz52548 11.5.1 (Available) Cisco SPA112 2-Port Phone Adapter CSCuz52494 1.4.5 (05-OCT-2016) Cisco SPA122 ATA with Router CSCuz52494 1.4.5 (05-OCT-2016) Cisco SPA232D Multi-Line DECT ATA CSCuz52494 1.4.5 (05-OCT-2016) Cisco SPA30X Series IP Phones CSCuz52496 No further releases are planned Cisco SPA50X Series IP Phones CSCuz52496 No further releases are planned Cisco SPA51X Series IP Phones CSCuz52496 No further releases are planned Cisco SPA525G CSCuz52495 7.6.5 (05-APR-2017) Cisco Unified 6901 IP Phones CSCuz52557 9.3(1)SR3 (05-APR-2017) Cisco Unified 6945 IP Phones CSCuz52561 No fix available Cisco Unified 7800 Series IP Phones CSCuz52566 11.5.2 (Available) Cisco Unified 8831 series IP Conference Phone CSCuz52559 79xx: 9.4.2 SR2 (JUN-2016)8831: 10.3.2 (JUL-2016)99xx: 9.4.2SR3 (JUL-2016)8941/45: 9.4.2SR3 (AUG-2016) Cisco Unified 8945 IP Phone CSCuz52558 9.4.2SR3 (Available) Cisco Unified 8961 IP Phone CSCuz52546 9.4.2SR3 (Available) Cisco Unified 9951 IP Phone CSCuz52546 9.4.2SR3 (Available) Cisco Unified 9971 IP Phone CSCuz52546 9.4.2SR3 (Available) Cisco Unified Attendant Console Advanced CSCuz52532 11.5.1 (Available) Cisco Unified Attendant Console Business Edition CSCuz52532 11.5.1 (Available) Cisco Unified Attendant Console Department Edition CSCuz52532 11.5.1 (Available) Cisco Unified Attendant Console Enterprise Edition CSCuz52532 11.5.1 (Available) Cisco Unified Attendant Console Premium Edition CSCuz52532 11.5.1 (Available) Cisco Unified Attendant Console Standard CSCuz52533 11.5.1 (Available) Cisco Unified Communications Manager (UCM) CSCuz52535 11.5 (Available) Cisco Unified Communications Manager Session Management Edition (SME) CSCuz52535 11.5 (Available) Cisco Unified Communications for Microsoft Lync CSCuz52541 11.6(0.39070) (Available) Cisco Unified Contact Center Enterprise CSCuz52360 11.51 (Available) Cisco Unified Contact Center Express - Live Data Server CSCuz63936 Cisco Unified Contact Center Express CSCuz63939 11.5.1 (Available) Cisco Unified IP Conference Phone 8831 for Third-Party Call Control CSCuz52320 No further releases are planned. Cisco Unified IP Phone 7900 Series CSCuz52567 No fix available Cisco Unified Intelligent Contact Management Enterprise CSCuz52360 11.51 (Available) Cisco Unified Sip Proxy CSCuz52349 CUSP 10.0 (Sept. 2016) Cisco Unified Wireless IP Phone CSCuz52573 1.5.1 (05-APR-2017) Cisco Unified Workforce Optimization Quality Management CSCuz52571 11.0 SR3 ES5 (30-JUN-2016) Cisco Unified Workforce Optimization CSCuz52572 11.0 SR3 ES5 (Available) Cisco Unity Connection (UC) CSCuz52538 11.5 (Available) Cisco Unity Express CSCuz52348 10.0 (JAN-2017) Cisco Virtualization Experience Media Engine CSCuz52570 11.7(0) (Available)11.5.1 (Available) Cisco AnyRes Live (CAL) CSCuz52522 9.4.5 (30-JUN-2016) Cisco DCM Series 9900-Digital Content Manager CSCuz52407 19.0.0 (Available) Cisco Digital Media Players (DMP) 4300 Series CSCuz52440 "5.4(1)RB(2P11) (Available)5.3(6) RB(2P8) (Available)" Cisco Digital Media Players (DMP) 4400 Series CSCuz52440 "5.4(1)RB(2P11) (Available)5.3(6) RB(2P8) (Available)" Cisco Edge 300 Digital Media Player CSCuz52514 1.6RB4_5 (29-JUN-2016) Cisco Edge 340 Digital Media Player CSCuz52515 1.2.0.20 (23-JUN-2016) Cisco Enterprise Content Delivery System (ECDS) CSCuz52442 2.6.8 (Available) Cisco Expressway Series CSCuz55590 8.8 (Available) Cisco Internet Streamer (CDS) CSCuz52465 4.3.2 (JUN-2016) Cisco Media Experience Engines (MXE) CSCuz52449 3.5.2 (Available) Cisco Media Services Interface CSCuz52438 No fix is expected Cisco Show and Share (SnS) CSCuz52454 No fixes are expected. Cisco TelePresence 1310 CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence Conductor CSCuz52439 4.3 (Available) Cisco TelePresence Content Server (TCS) CSCuz52456 7.2 (Available) Cisco TelePresence EX Series CSCuz52455 7.3.7(SEP-2016)8.2.0 (JUL-2016) Cisco TelePresence ISDN GW 3241 CSCuz52444 2.2(113) (Available) Cisco TelePresence ISDN GW MSE 8321 CSCuz52444 2.2(113) (Available) Cisco TelePresence ISDN Link CSCuz52446 1.1.6 (Available) Cisco TelePresence MCU (8510, 8420, 4200, 4500 and 5300) CSCuz52447 4.5(1.86) (NOV-2016) Cisco TelePresence MX Series CSCuz52455 7.3.7(SEP-2016)8.2.0 (JUL-2016) Cisco TelePresence Profile Series CSCuz52455 7.3.7(SEP-2016)8.2.0 (JUL-2016) Cisco TelePresence SX Series CSCuz52455 7.3.7(SEP-2016)8.2.0 (JUL-2016) Cisco TelePresence Serial Gateway Series CSCuz52453 No fix is planned Cisco TelePresence Server 8710, 7010 CSCuz52458 4.2 MR2 (Available)4.4 (Available) Cisco TelePresence Server on Multiparty Media 310, 320 CSCuz52458 4.2 MR2 (Available)4.4 (Available) Cisco TelePresence Server on Virtual Machine CSCuz52458 4.2 MR2 (Available)4.4 (Available) Cisco TelePresence Supervisor MSE 8050 CSCuz52448 2.3(1.50) (Available) Cisco TelePresence System 1000 CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence System 1100 CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence System 1300 CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence System 3000 Series CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence System 500-32 CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence System 500-37 CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence TX 9000 Series CSCuz52531 "6.1.13 (15-JAN-2016)1.10.16 (15-JAN-2016)1.9.12 (15-JAN-2016)" Cisco TelePresence Video Communication Server (VCS) CSCuz55590 8.8 (Available) Cisco Telepresence Integrator C Series CSCuz52455 7.3.7(SEP-2016)8.2.0 (JUL-2016) Cisco Video Distribution Suite for Internet Streaming (VDS-IS/CDS-IS) CSCuz52464 4.3.2 (JUN-2016) Cisco Video Surveillance 3000 Series IP Cameras CSCuz52490 2.8(0.297) (Available) Cisco Video Surveillance 3000 Series IP Cameras CSCuz52491 2.8(0.297) (Available) Cisco Video Surveillance 4000 Series High-Definition IP Cameras CSCuz52488 2.4(6.309) (Available) Cisco Video Surveillance 4300E/4500E High-Definition IP Cameras CSCuz52489 3.2.8 (MAY-2016) Cisco Video Surveillance 6000 Series IP Cameras CSCuz52490 2.8(0.297) (Available) Cisco Video Surveillance 6000 Series IP Cameras CSCuz52491 2.8(0.297) (Available) Cisco Video Surveillance 7000 Series IP Cameras CSCuz52490 2.8(0.297) (Available) Cisco Video Surveillance 7000 Series IP Cameras CSCuz52491 2.8(0.297) (Available) Cisco Video Surveillance Media Server CSCuz52492 7.9 (DEC-2016) Cisco Video Surveillance PTZ IP Cameras CSCuz52490 2.8(0.297) (Available) Cisco Video Surveillance PTZ IP Cameras CSCuz52491 2.8(0.297) (Available) Cisco Videoscape Control Suite CSCuz52462 Affected systems will be updated (30-Jun-2016) Cloud Object Store (COS) CSCuz52463 3.8 (Available) Tandberg Codian ISDN GW 3210/3220/3240 CSCuz52444 2.2(113) (Available) Tandberg Codian MSE 8320 model CSCuz52444 2.2(113) (Available) Cisco Aironet 2700 Series Access Point CSCuz52410 Cisco Mobility Services Engine (MSE) CSCuz52422 8.0 (Available) Cisco Wireless Control System CSCuz73565 No fix expected. Cisco Wireless LAN Controller (WLC) CSCuz52435 8.0 MR4 (NOV-2016)8.2 MR1 (JUL-2016)8.3 (JUN-2016) Cisco Connected Analytics For Collaboration CSCuz52356 1.0.1q (29-Jul-2016) Cisco Intelligent Automation for Cloud CSCuz52460 0.9.8 (Available) Cisco Proactive Network Operations Center CSCuz52354 3.0.19 (SEP-2016) Cisco Registered Envelope Service (CRES) CSCuz52362 Affected systems have been updated. Cisco Smart Care CSCuz52473 Cisco Universal Small Cell 5000 Series running V3.4.2.x software CSCuz52520 3.5.12.21 (30-JUN-2016) Cisco Universal Small Cell 7000 Series running V3.4.2.x software CSCuz52520 3.5.12.21 (30-JUN-2016) Cisco WebEx Meeting Center CSCuz52382 3.9.0.5 (25-MAY-2016)3.9.1 (25-MAY-2016) Cisco WebEx Messenger Service CSCuz52377 Affected systems have been updated Network Health Framework (NHF) CSCuz52525 No further releases are planned Network Performance Analytics (NPA) CSCuz52526 No further releases are planned Services Analytic Platform CSCuz52357 Affected versions will be updated (30-Jul-2016)

Multiple Vulnerabilities in Cisco Firewall Services Module Software

Cisco Firewall Services Module (FWSM) Software for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers is affected by the following vulnerabilities: Cisco FWSM Command Authorization Vulnerability SQL*Net Insp...

Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: June...

Product Cisco Bug ID Fixed Release Availability Cisco 3G Femtocell Wireless CSCuz92777 Affected systems will be updated (Aug. 2016) Cisco Unified MeetingPlace CSCuz92799 No fix is expected as product is nearing EOL. Cisco WebEx Meetings Server Releas...

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: November 2016

The Common Vulnerabilities and Exposures (CVE) IDs and names of the vulnerabilities that were disclosed on November 10, 2016, in the OpenSSL Software Foundation security advisory are as follows:CVE-2016-7053: OpenSSL CMS Null Dereference Vulnerability CVE-2016-7054: OpenSSL ChaCha20/Poly1305 Heap Buffer Overflow Vulnerability CVE-2016-7055: OpenSSL Montgomery Multiplication May Produce Incorrect Results Vulnerability OpenSSL CMS Null Dereference VulnerabilityA vulnerability in the code that handles ASN.1 CHOICE type in OpenSSL 1.1.0 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.The vulnerability is due to a NULL value being passed to the structure callback if an attempt is made to free certain invalid encodings.

An attacker could exploit this vulnerability by submitting crafted input to be processed by the affected software.

A successful exploit could allow an attacker to cause the application to stop functioning properly, leading to a DoS condition.This vulnerability has been assigned the following CVE ID: CVE-2016-7053OpenSSL ChaCha20/Poly1305 Heap Buffer Overflow VulnerabilityA vulnerability in the *-CHACHA20-POLY1305 cipher suites in OpenSSL could allow an unauthenticated, remote attacker to cause a targeted system to crash, resulting in a denial of service (DoS) condition.The vulnerability is due to improper validation of user-supplied data by the affected software.

An attacker could exploit this vulnerability by submitting large amounts of crafted data to the *-CHACHA20-POLY1305 cipher suites of the affected software over a Transport Layer Security (TLS) connection.

A successful exploit could allow the attacker to cause the affected software to crash, resulting in a DoS condition on the targeted system.This vulnerability has been assigned the following CVE ID: CVE-2016-7054OpenSSL Montgomery Multiplication May Produce Incorrect Results VulnerabilityA vulnerability in OpenSSL could cause authentication or key negotiation failures, resulting in a denial of service (DoS) condition.The vulnerability is due to Montgomery multiplication mathematical errors that occur when using OpenSSL with elliptic curve algorithms.

The vulnerability may occur without any external attacker action when performing cryptographic operations.

Errors resulting from incorrect mathematical computations could cause OpenSSL to fail during authentication or key negotiation, resulting in a DoS.This vulnerability has been assigned the following CVE ID: CVE-2016-7055For additional details about the vulnerabilities, refer to the November 2016 OpenSSL Security Advisory published by the OpenSSL Software Foundation.

Cisco TelePresence VX Clinical Assistant Administrative Password Reset Vulnerability

A vulnerability in the WIL-A module of Cisco TelePresence VX Clinical Assistant could allow an unauthenticated, remote attacker to log in as the admin user of the device using a blank password. The vulnerability is due to a coding...

Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: April...

Product Cisco Bug ID Fixed Release Availability Cisco 3G Femtocell Wireless CSCuz44342 Affected systems will be updated Aug 2016 Cisco MeetingPlace CSCuz4439...

Cisco IOS Software Resource Reservation Protocol Interface Queue Wedge Vulnerability

A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger an interface queue wedge on the affected device. The vu...

Cisco IOS Software DHCP Denial of Service Vulnerability

A vulnerability in the DHCP implementation of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability occurs during the parsing o...

Cisco IOS Software Zone-Based Firewall and Content Filtering Vulnerability

A vulnerability in the Zone-Based Firewall (ZBFW) component of Cisco IOS Software could allow an unauthenticated, remote attacker to cause an affected device to hang or reload. The vulnerability is due to improper processing of sp...