Multiple vulnerabilities in Accellion File Transfer Appliance (04 Mar 2021)

Multiple vulnerabilities such as SQL Injection, Command Injection and Server-Side Request Forgery have been discovered in Accellion File Transfer Appliance. A remote user can exploit some of these vulnerabilities to trigger remote code execution, cross-site scripting and security restriction bypass on the targeted system. The affected products are FTA version prior to 9.12.444.
Cisco releases security updates for multiple products (03 Mar 2021)

Cisco has released security updates to address vulnerabilities in the multiple Cisco products which can allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition.