Cisco Releases Security Updates

Original release date: July 05, 2017

Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of a system.

Users and administrators are encouraged to review the following Cisco Security Advisories and apply the necessary updates:

• Elastic Services Controller Unauthorized Access Vulnerability cisco-sa-20170705-esc2
• Ultra Services Framework UAS Unauthenticated Access Vulnerability cisco-sa-20170705-uas
• Ultra Services Framework Staging Server Arbitrary Command Execution Vulnerability cisco-sa-20170705-usf3
• StarOS CLI Command Injection Vulnerability cisco-sa-20170705-asrcmd
• Elastic Services Controller Arbitrary Command Execution Vulnerability cisco-sa-20170705-esc1
• Ultra Services Framework AutoVNF Symbolic Link Handling Information Disclosure Vulnerability cisco-sa-20170705-usf1
• Ultra Services Framework AutoVNF Log File User Credential Information Disclosure Vulnerability cisco-sa-20170705-usf2

---

This product is provided subject to this Notification and this Privacy & Use policy.