Cisco Products September 2024 First Security Update Advisory

Sep 05 2024

Overview

Cisco (https://www.cisco.com) has released a security update that fixes vulnerabilities in products it has been made. Users of affected systems are advised to update to the latest version.

Affected Products

CVE-2024-20439, CVE-2024-20440

Cisco Smart Licensing Utility version: 2.0.0
Cisco Smart Licensing Utility version: 2.1.0
Cisco Smart Licensing Utility version: 2.2.0

Resolved Vulnerabilities

Vulnerability that allows an unauthenticated remote attacker to log in to an affected system using static administrator credentials (CVE-2024-20439)

Vulnerability that could allow an unauthenticated remote attacker to access sensitive information (CVE-2024-20440)

Vulnerability Patches

Product-specific Vulnerability Patches were made available in the August 28, 2024 update. please refer to the ‘Affected Products’ and ‘Fixed Software’ in the product-specific information in the Referenced Sites below to apply the patches.

Referenced Sites

[1] Cisco Smart Licensing Utility Vulnerabilities

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cslu-7gHMzWmw

Cisco Products September 2024 First Security Update Advisory

Okta Browser Plugin Security Update Advisory (CVE-2024-0981)

Foreman Security Update Advisory (CVE-2024-7012, CVE-2024-7923)

Tags:

Okta Browser Plugin Security Update Advisory (CVE-2024-0981)

Foreman Security Update Advisory (CVE-2024-7012, CVE-2024-7923)