Cisco has released updates to address nine critical security flaws in its Small Business Series Switches. The flaws could be exploited by an unauthenticated, remote attacker to run arbitrary code or cause a denial-of-service (DoS) condition. The vulnerabilities are due to improper validation of requests that are sent to the web interface. Cisco has credited an unnamed external researcher for reporting the issues.