KISA ȰSecurity Notice

ۼ : KISA ۼ :

 

 o Cisco ڻ ǰ ذ Ʈ

 o ڴ ش ̿Ͽ ڵ ظ ߻ų Ƿ, ش ǰ ϴ ̿ڵ ֽ Ʈ ǰ

 

 ֿ

 o Cisco Data Center Network Manager REST/SOAP API ̽ ȣŰ ڰ ȸϿ ڵ带 ִ (CVE-2019-15975, 15976, 15977) [1]

 o Cisco Data Center Network Manager REST/SOAP API Է° Ͽ ߻ϴ SQL  (CVE-2019-15984, 15985) [2]

 o Cisco Data Center Network Manager REST/SOAP API Է° Ͽ ߻ϴ Ž (CVE-2019-15980, 15981, 15982) [3]

 o Cisco Data Center Network Manager REST/SOAP API Է° Ͽ ߻ϴ ɾ (CVE-2019-15978, 15979) [4]

 

  ޴ ǰ ذ

 o Ʈ õǾ ִ ‘Affected Products’ ‘Fixed Software’  ȮϿ ġ

 

 Ÿ ǻ

 o ѱͳ ̹ο:  118

 

[Ʈ]

[1] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-auth-bypass#details

[2] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-sql-inject

[3] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-path-trav

[4] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200102-dcnm-comm-inject