Tuesday, February 18, 2025
HomeCiscoCisco Security Updates - RCE Flaw in Cisco Industrial Network Director Let...

Cisco Security Updates – RCE Flaw in Cisco Industrial Network Director Let Hackers Gain Admin Level Access

Published on

SIEM as a Service

Follow Us on Google News

Cisco released a security update to address multiple vulnerabilities that reside in Cisco utilities includes a remote code execution flaw that affected Cisco Industrial Network Director.

This new Cisco security updates release with the fixes for 9 vulnerabilities, in which, two vulnerabilities marked as high severity and rest of the 7 vulnerabilities are categorized under medium severity.

Remote code execution resides in software update feature of Cisco Industrial Network Director let remote attacker authenticate the system remotely to execute the arbitrary code and take full control of the vulnerable system.

“The vulnerability ( CVE-2019-1861) is due to improper validation of files uploaded to the affected application. An attacker could exploit this vulnerability by authenticating to the affected system”

Cisco fixed this vulnerability in its new software releases 1.6.0 for Cisco Industrial Network Director.

Another high severity vulnerability ( CVE-2019-1845) that affected Cisco Unified Communications Manager IM&P Service, Cisco TelePresence VCS, and Cisco Expressway let attackers perform Denial of Service.

According to Cisco, This vulnerability affects the Cisco following products if users are running a vulnerable release:

  • Expressway Series configured for Mobile and Remote Access with IM&P Service (Releases X8.1 to X12.5.2)
  • TelePresence VCS configured for Mobile and Remote Access with IM&P Service (Releases X8.1 to X12.5.2)
  • Unified Communications Manager IM&P Service (multiple releases)

Fixed Vulnerabilities in This Cisco Security Updates

Cisco Industrial Network Director Remote Code Execution VulnerabilityHighCVE-2019-1861 
Cisco Unified Communications Manager IM&P Service, Cisco TelePresence VCS, and Cisco Expressway Series Denial of Service VulnerabilityHighCVE-2019-1845 
Cisco Webex Meetings Server Information Disclosure VulnerabilityMediumCVE-2019-1868
Cisco TelePresence Video Communication Server and Cisco Expressway Series Server-Side Request Forgery VulnerabilityMediumCVE-2019-1872 
Cisco Unified Computing System BIOS Signature Bypass VulnerabilityMediumCVE-2019-1880 
Cisco IOS XR Software Secure Shell Authentication VulnerabilityMediumCVE-2019-1842 
Cisco Industrial Network Director Stored Cross-Site Scripting VulnerabilityMediumCVE-2019-1882 
Cisco Industrial Network Director Cross-Site Request Forgery Vulnerability MediumCVE-2019-1881 
Cisco Enterprise Chat and Email Cross-Site Scripting VulnerabilityMediumCVE-2019-1870 

Cisco advised affected users to apply these patches immediately to keep the network safe and secure.

The patches can be deployed through Patch Manager plus, where you can pre-built, tested, ready-to-deploy packages for your Enterprise network.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates, also you can take the Best Cybersecurity courses online to keep yourself updated.

Also Read:

Critical Vulnerability in Cisco Elastic Services Controller Let Hackers Take Full Control of the System Remotely

Cisco Fixed Routers Vulnerabilities that Allows Hackers to Run Remote Code with Root Access

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Highly Obfuscated .NET sectopRAT Mimic as Chrome Extension

SectopRAT, also known as Arechclient2, is a sophisticated Remote Access Trojan (RAT) developed using...

Threat Actors Trojanize Popular Games to Evade Security and Infect Systems

A sophisticated malware campaign was launched by cybercriminals, targeting users through trojanized versions of...

New Research Aims to Strengthen MITRE ATT&CK for Evolving Cyber Threats

A recent study by researchers from the National University of Singapore and NCS Cyber...

New LLM Vulnerability Exposes AI Models Like ChatGPT to Exploitation

A significant vulnerability has been identified in large language models (LLMs) such as ChatGPT,...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

CISA Released A Free Guide to Enhance OT Product Security

To address rising cyber threats targeting critical infrastructure, the U.S. Cybersecurity and Infrastructure Security...

Is this Website Safe: How to Check Website Safety – 2025

is this website safe? In this digital world, Check a website is safe is...

Firefox 133.0 Released with Multiple Security Updates – What’s New!

Mozilla has officially launched Firefox 133.0, offering enhanced features, significant performance improvements, and critical...