Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
NCCIC/US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:
- Cisco IOS XE Software Static Credential Vulnerability cisco-sa-20180328-xesc
- Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability cisco-sa-20180328-smi2
- Cisco IOS and IOS XE Software Quality of Service Remote Code Execution Vulnerability cisco-sa-20180328-qos
This product is provided subject to this Notification and this Privacy & Use policy.