On 2019 September 15, Cisco stopped publishing non-Cisco product alerts — alerts with vulnerability information about third-party software (TPS). Cisco will continue to publish Security Advisories to address both Cisco proprietary and TPS vulnerabilities per the Cisco Security Vulnerability Policy. Cisco uses Release Note Enclosures to disclose the majority of TPS vulnerabilities; exceptions to this method are outlined in the Third-Party Software Vulnerabilities section of the Cisco Security Vulnerability Policy. The following links provide additional information.
Vulnerability Information for Non-Cisco Products
• National Vulnerability Database: https://nvd.nist.gov
• Common Vulnerabilities and Exposures: https://cve.mitre.org
Vulnerability Information for Cisco Products
• Cisco Bug Search Tool: https://bst.cloudapps.cisco.com/bugsearch
• Cisco Technical Assistance Center (TAC): https://mycase.cloudapps.cisco.com/case
Cisco Security Policy and Advisories
• Cisco Security Vulnerability Policy: https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html
• Cisco Security Advisories: https://sec.cloudapps.cisco.com/security/center/publicationListing.x