"An attacker could exploit this vulnerability by sending a crafted request through the web-based user interface," according to Cisco for each of them."A successful exploit could allow the attacker to execute arbitrary code withThat means if you can get to the web control panel of the equipment, and exploit the holes in them, you can remotely take over the switch, and make it do whatever you want.
Three other switches – Small Business 200 Series smart switches, Small Business 300 Series managed switches, and Small Business 500 Series stackable managed switches – also were affected by the bugs but won't be patched because they are reaching their end-of-life. "Cisco would like to thank the external researcher who reported these vulnerabilities," the manufacturer added.