Warning, Cisco has released three security advisories to address multiple vulnerabilities affecting various components of (DCNM).

For those who use various components of Cisco Prime Data Center Network Manager (DCNM), please be cautious, Cisco has released three security advisories to address multiple vulnerabilities affecting various components of Cisco Prime Data Center Network Manager (DCNM).

According to Cisco, these vulnerabilities may allow an unauthenticated, remote

attacker to disclose file components and access text files on an affected device. These vulnerabilities can be exploited independently on the same device; however, a release that is affected by one of the vulnerabilities may not be affected by the others.
Therefore, Cisco has released software updates to address the following vulnerabilities:

• Cisco Prime DCNM Information Disclosure Vulnerability
• Cisco Prime DCNM Remote Command Execution Vulnerabilities
• Cisco Prime DCNM XML External Entity Injection Vulnerability

Connectikpeople encourages you, users and administrators to review the following Cisco Security Advisory and apply any necessary updates to help mitigate the risk.

In addition, Cisco has also released a security advisory to address vulnerability in the web framework of Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance. According to Cisco, this vulnerability could allow an unauthenticated, remote attacker to access sensitive information on the system, including user credentials.

Connectikpeople encourages, you, users and administrators to review the following Cisco Security Advisory and apply any necessary updates to help mitigate the risk.