Tuesday, May 13, 2025
HomeSecurity UpdatesCisco Releases Security Updates that Covers 16 Vulnerabilities that had Critical and...

Cisco Releases Security Updates that Covers 16 Vulnerabilities that had Critical and High Impact

Published on

SIEM as a Service

Follow Us on Google News

Cisco released patches for 30 vulnerabilities affecting multiple products that include 3 critical vulnerabilities, 13 High severity vulnerabilities, and 14 medium level vulnerabilities.

Critical Vulnerabilities

Cisco security update covers the recently disclosed Apache Struts Remote Code Execution Vulnerability which allows a remote attacker to execute arbitrary code on the targeted system. The vulnerability affected Cisco multiple products, here is the list.

Another critical vulnerability that resides with Cisco Umbrella API which allows a remote attacker to view and modify the data across multiple organizations.

- Advertisement - Google News

Cisco addressed Buffer Overflow Vulnerability web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router.

Attackers could exploit this vulnerability by sending malicious packets which stop the device responding and cause a DOS condition.

Critical

CVE-2018-11776

2018 Sep 051.8
Critical

CVE-2018-0435

2018 Sep 051.0
Critical

CVE-2018-0423

2018 Sep 051.0

High Impact Vulnerabilities

Cisco fixed some of the high severity vulnerabilities such as Privilege Escalation Vulnerability, information disclosure, command injection, Directory Traversal, Denial of Service, Command Injection that affects multiple Cisco products.

High

CVE-2018-0422

2018 Sep 051.0
High

CVE-2018-0436

2018 Sep 051.0
High

CVE-2018-0437

2018 Sep 051.0
High

CVE-2018-0438

2018 Sep 051.0
High

CVE-2018-0434

2018 Sep 051.0
High

CVE-2018-0433

2018 Sep 051.0
High

CVE-2018-0432

2018 Sep 051.0
High

CVE-2018-0426

2018 Sep 051.0
High

CVE-2018-0424

2018 Sep 051.0
High

CVE-2018-0425

2018 Sep 051.0
High

CVE-2018-0421

2018 Sep 051.0
High

CVE-2018-0430
CVE-2018-0431

2018 Sep 051.0
High

CVE-2018-0440

2018 Sep 051.0

Medium Impact Vulnerabilities

Medium

CVE-2018-0457

2018 Sep 051.0
Medium

CVE-2018-0452

2018 Sep 051.0
Medium

CVE-2018-0451

2018 Sep 051.0
Medium

CVE-2018-0444
CVE-2018-0445

2018 Sep 051.0
Medium

CVE-2018-0458

2018 Sep 051.0
Medium

CVE-2018-0463

2018 Sep 051.0
Medium

CVE-2018-0460

2018 Sep 051.0
Medium

CVE-2018-0462

2018 Sep 051.0
Medium

CVE-2018-0459

2018 Sep 051.0
Medium

CVE-2018-0439

2018 Sep 051.0
Medium

CVE-2018-0447

2018 Sep 051.0
Medium

CVE-2018-0450

2018 Sep 051.0
Medium

CVE-2018-0454

2018 Sep 051.0
Medium

CVE-2018-0414

2018 Sep 051.0

With the last security update, Cisco fixed five vulnerabilities that affected various Cisco products and one of those flaws allow remote attackers to execute the arbitrary code and taking the system control.

Also Read

Adobe Release Security Patches to Fix Critical Vulnerabilities for Adobe Photoshop

Apache Security Update that Covers Multiple Vulnerabilities With Tomcat Native

VMware Released Critical Security Updates for Multiple Vulnerabilities Including L1 Terminal Fault

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Attackers Leverage Unpatched Output Messenger 0‑Day to Deliver Malicious Payloads

A Türkiye-affiliated espionage threat actor, tracked by Microsoft Threat Intelligence as Marbled Dust (also...

Cobalt Strike 4.11.1 Released With SSL Checkbox Fix

Cobalt Strike has announced the release of version 4.11.1, an out-of-band update addressing several...

Apple Releases Security Patches to Fix Critical Data Exposure Flaws

Apple released critical security updates for macOS Sequoia 15.5 on May 12, 2025, addressing...

Lumma Stealer Upgraded with PowerShell Tools and Advanced Evasion Techniques

Sophos Managed Detection and Response (MDR) in September 2024, the notorious Lumma Stealer malware...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Attackers Leverage Unpatched Output Messenger 0‑Day to Deliver Malicious Payloads

A Türkiye-affiliated espionage threat actor, tracked by Microsoft Threat Intelligence as Marbled Dust (also...

Apple Releases Security Patches to Fix Critical Data Exposure Flaws

Apple released critical security updates for macOS Sequoia 15.5 on May 12, 2025, addressing...

VMware Tools Vulnerability Allows Attackers to Modify Files and Launch Malicious Operations

Broadcom-owned VMware has released security patches addressing a moderate severity insecure file handling vulnerability...