…there are updates.
Cisco fixes critical flaws in small business switches • The Register
These bugs can be exploited to remotely take over the devices, allowing a threat actor to compromise your network security. There is no evidence of the exploit being actively exploited but there is proof of concept code out there.
So get the updates done if you one of the impacted devices.
My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.
Clive Catton MSc (Cyber Security) – by-line and other articles