{"id":2626,"date":"2021-03-12T12:14:20","date_gmt":"2021-03-12T17:14:20","guid":{"rendered":"https:\/\/cert.pa\/?p=2626"},"modified":"2021-03-12T12:16:50","modified_gmt":"2021-03-12T17:16:50","slug":"csirt-panama-aviso-2021-03-11-cisco-vulnerabilidad-en-productos-cisco","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=2626","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2021-03-11 Cisco: Vulnerabilidad en Productos Cisco"},"content":{"rendered":"\n<p>CSIRT Panam\u00e1 Aviso 2021-03-11 Cisco: Vulnerabilidad en Productos Cisco<\/p>\n\n\n\n<p>Gravedad: Alta                                                                                                   <br>\nFecha de publicaci\u00f3n: Marzo 11, 2021<br>\n\u00daltima revisi\u00f3n: Marzo 11, 2021<br>\nSitio web: https:\/\/www.cisco.com\/<br>\nSistemas Afectados: Productos Ciscos que est\u00e9n ejecutando Cisco NX-OS versiones 9.3 (5) o 9.3 (6):<\/p>\n\n\n\n<p>\u2022    Nexus 3000 Series Switches<br>\n\u2022    Nexus 9000 Series Switches in standalone NX-OS mode<\/p>\n\n\n\n<p>I.Descripci\u00f3n<\/p>\n\n\n\n<p>Vulnerabilidades cr\u00edticas que afectan a productos cisco como los switches Nexus 3000 Series y Nexus 9000 Series. <\/p>\n\n\n\n<p>II.Impacto<\/p>\n\n\n\n<p>Vulnerabilidad: CVE-2021-1361<br>\nLa implementaci\u00f3n de un servicio de administraci\u00f3n de archivos para los switches Cisco Nexus 3000 Series y Cisco Nexus 9000 en modo NX-0S que corren el software Cisco NX-0S. Esta vulnerabilidad podr\u00eda permitir a un atacante remoto no autenticado a crear, eliminar o sobrescribir archivos arbitrarios con privilegios de root en el aparato.<\/p>\n\n\n\n<p>III. Referencia a soluciones, herramientas e informaci\u00f3n<br>\nInstalar las \u00faltimas actualizaciones de los productos afectados desde el sitio del proveedor. <\/p>\n\n\n\n<p>Fuentes:<br>     CISCO. Cisco Security Advisory,  Cisco NX-OS Software Unauthenticated Arbitrary File Actions Vulnerability. Recopilado en: https:\/\/tools.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-3000-9000-fileaction-QtLzDRy2<br> <\/p>\n\n\n\n<p>    CVE. Common Vulnerabilities and Exposures. Recopilado en: https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2021-1361<\/p>\n\n\n\n<p>Informaci\u00f3n de contacto<\/p>\n\n\n\n<p>CSIRT PANAMA<br>\nComputer Security Incident Response Team Autoridad Nacional para la Innovacion Gubernamental<br>\nE-Mail: info@cert.pa<br>\nPhone: +507 520-CERT (2378)<br>\nWeb: https:\/\/cert.pa<br>\nTwitter: @CSIRTPanama<br>\nKey ID: 16F2B124<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CSIRT Panam\u00e1 Aviso 2021-03-11 Cisco: Vulnerabilidad en Productos Cisco Gravedad: Alta Fecha de publicaci\u00f3n: Marzo 11, 2021 \u00daltima revisi\u00f3n: Marzo 11, 2021 Sitio web: https:\/\/www.cisco.com\/ Sistemas Afectados: Productos Ciscos que est\u00e9n ejecutando Cisco NX-OS versiones&#8230;<\/p>\n","protected":false},"author":4,"featured_media":448,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[72,38,68],"class_list":["post-2626","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-avisos-de-seguridad","tag-cisco","tag-vulnerabilidades"],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/2626","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2626"}],"version-history":[{"count":2,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/2626\/revisions"}],"predecessor-version":[{"id":2628,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/2626\/revisions\/2628"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/448"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2626"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2626"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2626"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}