情報源

US-CERT Current Activity
Cisco Releases Security Updates
https://www.us-cert.gov/ncas/current-activity/2020/01/24/cisco-releases-security-updates

Cisco Releases Security Updates for Cisco Small Business Switches
https://www.us-cert.gov/ncas/current-activity/2020/01/30/cisco-releases-security-updates-cisco-small-business-switches

概要

– Cisco Webex Meetings Suite sites 40.1.3 より前のバージョン
– Cisco Webex Meetings Suite sites 39.11.5 より前のバージョン
– Cisco Webex Meetings Online sites 40.1.3 より前のバージョン
– Cisco Webex Meetings Online sites 39.11.5 より前のバージョン
2.5.0.92 より前のファームウエアが稼働する次の製品
– 250 Series Smart Switches
– 350 Series Managed Switches
– 350X Series Stackable Managed Switches

– 200 Series Smart Switches
– 300 Series Managed Switches

– 200 Series Smart Switches
– 300 Series Managed Switches
– 500 Series Stackable Managed Switches

関連文書 (英語)

Cisco Security Advisory
Cisco Webex Meetings Suite and Cisco Webex Meetings Online Unauthenticated Meeting Join Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200124-webex-unauthjoin

Cisco Small Business Switches Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-smlbus-switch-dos-R6VquS2u

Cisco Small Business Switches Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200129-smlbus-switch-disclos

引用元：JPCERTコーディネーションセンター
「JPCERT/CC WEEKLY REPORT 2020-02-05」
https://www.jpcert.or.jp/wr/2020/wr200501.html