Cisco patched critical and high severity vulnerabilities in several products, including the Cloud Services Platform (CSP) and the Firepower Extensible Operating System (FXOS) and NX-OS software, and some Small Business IP phones. The most severe vulnerability patched in this round it the CVE-2017-12251, a critical unauthorized access flaw affecting the Cloud Service Platform 2100. The vulnerability resides in the web console of the CSP 2100 and could be exploited by a remote an authenticated attacker to interact maliciously with the services or virtual machines on an affected CSP device.”]
Source: http://securityaffairs.co/wordpress/64531/hacking/cisco-cloud-services-platform-flaws.html