https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5194904#M591838 <P>&nbsp;</P> <P>Hello,</P> <P>Do you know what the exact impact of this vulnerability is on an ISE SNS-3655-K9 in version 3.3 P3?</P> <P>BR,</P> <P>José</P> Mon, 16 Sep 2024 15:51:03 GMT jds5 2024-09-16T15:51:03Z https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5194904#M591838 <P>&nbsp;</P> <P>Hello,</P> <P>Do you know what the exact impact of this vulnerability is on an ISE SNS-3655-K9 in version 3.3 P3?</P> <P>BR,</P> <P>José</P> Mon, 16 Sep 2024 15:51:03 GMT https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5194904#M591838 jds5 2024-09-16T15:51:03Z https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5194925#M591839 <P>It's a discovered vulnerability on the Linux based OS which ISE uses as well and it could cause a leakage of some sensitive information or denial of service as per this NetApp link provided by nist.gov:</P> <P><A href="https://security.netapp.com/advisory/ntap-20230413-0008/" target="_blank">CVE-2023-28531 OpenSSH Vulnerability in NetApp Products | NetApp Product Security</A></P> <P><A href="https://nvd.nist.gov/vuln/detail/CVE-2023-28531" target="_blank">NVD - CVE-2023-28531 (nist.gov)</A></P> Mon, 16 Sep 2024 16:40:12 GMT https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5194925#M591839 Aref Alsouqi 2024-09-16T16:40:12Z https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5195147#M591842 <P>Does version 3.4 fix this vulnerability?</P> Tue, 17 Sep 2024 07:00:01 GMT https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5195147#M591842 jds5 2024-09-17T07:00:01Z https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5195728#M591868 <P>Hello,&nbsp;</P> <P>Does someone have this information? Thank you,</P> <P>BR,</P> Wed, 18 Sep 2024 09:40:00 GMT https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5195728#M591868 jds5 2024-09-18T09:40:00Z https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5198025#M591942 <P>Looking at the resolved bugs list in ISE 3.4 it does not seem to include it:</P> <P><A href="https://www.cisco.com/c/en/us/td/docs/security/ise/3-4/release_notes/b_ise_34_RN.html#concept_wzr_cz3_dcc" target="_blank">Release Notes for Cisco Identity Services Engine, Release 3.4 - Cisco</A></P> Tue, 24 Sep 2024 09:39:50 GMT https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5198025#M591942 Aref Alsouqi 2024-09-24T09:39:50Z https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5203476#M592181 <P>I would be nice if this was included in P4 coming sometime this month (which fixes&nbsp;<SPAN>CVE-2024-20469).&nbsp;</SPAN></P> Fri, 04 Oct 2024 14:15:42 GMT https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5203476#M592181 Kyle Stewart 2024-10-04T14:15:42Z https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5204573#M592255 <P>Look here. This doesn't affect ISE at all. Change the criteria to Not Affected and you'll see that confirmation. I'm sure this has to do with using customized versions of OpenSSH but vulnerability scanners only look at the version # (at least some of them).</P><P><A href="https://sec.cloudapps.cisco.com/security/center/cvr?cveIdList=CVE-2023-28531#~cve" target="_blank" rel="noopener">https://sec.cloudapps.cisco.com/security/center/cvr?cveIdList=CVE-2023-28531#~cve</A></P> Mon, 07 Oct 2024 14:19:17 GMT https://community.cisco.com/t5/network-access-control/ise-cve-2023-28531-vulnerabilities-in-openssh-8-0p1/m-p/5204573#M592255 Kyle Stewart 2024-10-07T14:19:17Z