Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Users are advised to review the following Cisco advisories and apply the necessary updates:

• Cisco Email Security Appliance and Cisco Web Security Appliance Certificate Validation Vulnerability - CVE-2021-1566

• Cisco DNA Center Certificate Validation Vulnerability - CVE-2021-1134

• Cisco Small Business 220 Series Smart Switches Vulnerabilities - CVE-2021-1541, CVE-2021-1542, CVE-2021-1543

• Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability - CVE-2021-1567

• Cisco Meeting Server API Denial of Service Vulnerability - CVE-2021-1524

• Cisco Jabber Desktop and Mobile Client Software Vulnerabilities - CVE-2021-1569, CVE-2021-1570

• Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability - CVE-2021-1395

• Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability - CVE-2021-1568

• Cisco Jabber and Webex Client Software Vulnerability – CVE-2021-1242.