Cisco issues two critical security advisories for Cisco IOS and IOS IOS XE Software. The IOS vulnerability is in the Cisco Cluster Management Protocol (CMP) processing code. Cisco says it will release software to address this vulnerability but there are no workarounds at this point. On March 6, 2017, Apache disclosed a vulnerability in the Jakarta Multipart Parser used in Apache Struts2 that could allow an attacker to execute arbitrary code and obtain full control of the device.”]