Vulnerabilities in OpenSSL Affecting Cisco Products: November 2022

CVEs:CVE-2022-3602CVE-2022-3786

Cisco Identity Services Engine Unauthorized File Access Vulnerability

CVEs:CVE-2022-20822

Affected products

Cisco Identity Services Engine Cross-Site Scripting Vulnerability

CVEs:CVE-2022-20959

Affected products

Cisco Meraki MX and Z3 Teleworker Gateway VPN Denial of Service Vulnerability

CVEs:CVE-2022-20933

Affected products

Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities

CVEs:CVE-2022-20811CVE-2022-20776CVE-2022-20953CVE-2022-20954CVE-2022-20955

Affected products

Cisco Touch 10 Devices Downgrade Vulnerability

CVEs:CVE-2022-20931

Affected products

Cisco Touch 10 Devices Insufficient Identity Verification Vulnerability

CVEs:CVE-2022-20793

Affected products

Cisco Enterprise NFV Infrastructure Software Improper Signature Verification Vulnerability

CVEs:CVE-2022-20929

Affected products

Cisco ATA 190 Series Analog Telephone Adapter Software Vulnerabilities

CVEs:CVE-2022-20686CVE-2022-20687CVE-2022-20688CVE-2022-20689CVE-2022-20690CVE-2022-20691CVE-2022-20766

Affected products

Cisco BroadWorks Hosted Thin Receptionist Cross-Site Scripting Vulnerability

CVEs:CVE-2022-20948

Affected products

Cisco Smart Software Manager On-Prem Privilege Escalation Vulnerability

CVEs:CVE-2022-20939

Affected products

Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities

CVEs:CVE-2022-20814CVE-2022-20853

Affected products

Cisco Jabber Client Software Extensible Messaging and Presence Protocol Stanza Smuggling Vulnerability

CVEs:CVE-2022-20917

Affected products

Cisco Secure Web Appliance Content Encoding Filter Bypass Vulnerabilities

CVEs:CVE-2023-20099CVE-2022-20952

Affected products