Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Cisco has released security updates and workarounds to address high severity vulnerabilities (CVE-2022-20732, CVE-2022-20773, CVE-2022-20783) in Cisco Virtualized Infrastructure Manager, Cisco Umbrella VA, Cisco TelePresence CE and Cisco RoomOS products. An attacker could exploit these vulnerabilities to access confidential information, elevate privileges, learn the administrator credentials, change configurations and to cause a denial of service (DoS) condition on an affected system.

Cisco has also released patches for several medium severity vulnerabilities in Cisco Webex, Cisco Adaptive Security Appliance, Cisco Firepower Threat Defense, Cisco Umbrella, Cisco Unified Communication Manager and Cisco IOS XR products.

Details on all of the addressed vulnerabilities are available on Cisco’s security portal - cisco.com.