The impacted devices include the 250 Series smart switches, 350 Series managed switches, and 350X Series and 550X stackable managed switches. To address the vulnerabilities, IT teams are strongly advised to update their firmware to version 2.5.9.16. Cisco has stated that no workarounds are available, making the application of the patch the only viable solution for ensuring network security.
Additional devices affected by the vulnerabilities include the Small Business 200 Series smart switches, Small Business 300 Series managed switches, and Small Business 500 Series stackable managed switches. However, as these devices are approaching their end-of-life stage, Cisco will not release a patch specifically for them. Instead, businesses using these endpoints are encouraged to migrate to newer models.
