In all, Cisco released 10 advisories, nine of which concerned IOS vulnerabilities. The most serious of the flaws in IOS is a bug in the way that the Smart Install application works on some Cisco Catalyst switches. The problem can allow an attacker to run arbitrary code on the switch. In addition to those problems, there also is a serious issue in the Identity Services Engine, which has a default set of credentials for its underlying database. The full list of Cisco advisories is available on the Cisco security support site.
Source: https://threatpost.com/cisco-patches-slew-ios-bugs-092911/75705/