Home

Some companies that have chosen us

Privacy Officer and Privacy Consultant
CDP Scheme according to ISO/IEC 17024:2012
European Privacy Auditor
ISDP©10003 Certification Scheme according to ISO/IEC 17065:2012
Auditor
According to standard UNI 11697:2017
Lead Auditor ISO/IEC 27001:2022
According to standard ISO/IEC 17024:2012
Data Protection Officer
According to standard ISO/IEC 17024:2012
Anti-Bribery Lead Auditor Expert
According to standard ISO/IEC 17024:2012
ICT Security Manager
According to standard UNI 11506:2017
IT Service Management (ITSM)
According to the ITIL Foundation
Ethical Hacker (CEH)
According to the EC-Council
Network Defender (CND)
According to the EC-Council
Computer Hacking Forensics Investigator (CHFI)
According to the EC-Council
Penetration Testing Professional (CPENT)
According to the EC-Council

Professional qualifications

Stay up-to-date with world news!

Select your topics of interest:
CYBER ALERT
Home / CYBER ALERT
/
Fixed vulnerabilities in Cisco products (AL01/250123/CSIRT-ITA)

Fixed vulnerabilities in Cisco products (AL01/250123/CSIRT-ITA)

Summary

Security updates address 3 new vulnerabilities, one with a severity of “critical” and one with a severity of “high”, in some Cisco products.

Risk

Estimate of impact of the vulnerability on the reference community: High (66.53)

Type

  • Privilege Escalation
  • Denial of Service

Affected products and/or versions

Cisco

  • Meeting Management, versions prior to 3.9.1
  • BroadWorks, versions prior to RI.2024.11

Mitigation actions

It is recommended to update the vulnerable products following the instructions provided by the vendor for each affected product and reported in the security bulletins available at the links in the References section.

The following are only the CVEs related to the vulnerabilities with a severity of “critical” and “high”:

CVE
CVE-2025-20156
CVE-2025-20165

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmm-privesc-uy2Vf8pc

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bw-sip-dos-mSySbrmt

https://sec.cloudapps.cisco.com/security/center/publicationListing.x

1This estimate is made taking into account several parameters, including: CVSS, availability of patches/workarounds and PoC, diffusion of the affected software/devices in the reference community.

Recommended to you

Search in 365TRUST

Our services