
개요
Cisco 사는 제품에서 발생하는 취약점에 대한 보안 업데이트를 발표하고, 관련 취약점을 해결하기 위해 최신 버전으로 업데이트할 것을 권고하였다
취약점 정보
Cisco Identity Services Engine의 Reflected XSS(Cross-Site Scripting) 및 정보 유출(Information Disclosure) 취약점
CVE-2025-20289, CVE-2025-20303, CVE-2025-20304
다수의 Cisco Contact Center 제품 취약점
CVE-2025-20374, CVE-2025-20375, CVE-2025-20376
Cisco Unified Contact Center Express의 원격 코드 실행 취약점
CVE-2025-20354, CVE-2025-20358
Cisco Catalyst Center Virtual Appliance의 권한 상승 취약점
CVE-2025-20341
Cisco Catalyst Center의 권한 상승 취약점
CVE-2025-20346
Cisco Catalyst Center의 XSS(Cross-Site Scripting) 취약점
CVE-2025-20353
Cisco Catalyst Center의 REST API 명령어 삽입 취약점
CVE-2025-20349
Cisco Catalyst Center Virtual Appliance의 HTTP 오픈 리다이렉트 취약점
CVE-2025-20355
참고자료
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-multiple-vulns-O9BESWJH
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cc-mult-vuln-gK4TFXSn
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cc-unauth-rce-QeN8h7mQ
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-catc-priv-esc-VS8EeCuX
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-privesc-catc-rYjReeLU
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-xss-weXtVZ59
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ci-ZWLQVSwT
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-catc-open-redirect-3W5Bk3Je
