Description
Cisco has released a security update to address a vulnerability in the following product:
- Cisco AsyncOS - Cisco Secure Web Appliance
Threats
An attacker could exploit this vulnerability by doing the following:
Elevate privileges to root
Inject malicious commands
Elevate privileges to root
Inject malicious commands
Best practice and Recommendations:
The CERT team encourages users to review Cisco security advisory and apply the necessary update:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-prv-esc-8PdRU8t8
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wsa-prv-esc-8PdRU8t8