https://community.cisco.com/t5/network-security/ten-142960/m-p/5171054#M1115581 <P>&nbsp;</P> <P>&nbsp;- For a cisco device you then need to use the latest (advisory) software version for the involved device , if applicable and or upgrade CIMC software too , if available as a separate component.</P> <P>&nbsp;- If that does not help contact TAC if that is important for business, M.</P> Wed, 04 Sep 2024 15:44:10 GMT Mark Elsen 2024-09-04T15:44:10Z https://community.cisco.com/t5/network-security/ten-142960/m-p/5171038#M1115580 <P>How to remediate this on CIMC devices.&nbsp; The remote HTTPS server does not send the HTTP<BR />"Strict-Transport-Security" header.</P> Wed, 04 Sep 2024 15:23:21 GMT https://community.cisco.com/t5/network-security/ten-142960/m-p/5171038#M1115580 tlmckinnon94 2024-09-04T15:23:21Z https://community.cisco.com/t5/network-security/ten-142960/m-p/5171054#M1115581 <P>&nbsp;</P> <P>&nbsp;- For a cisco device you then need to use the latest (advisory) software version for the involved device , if applicable and or upgrade CIMC software too , if available as a separate component.</P> <P>&nbsp;- If that does not help contact TAC if that is important for business, M.</P> Wed, 04 Sep 2024 15:44:10 GMT https://community.cisco.com/t5/network-security/ten-142960/m-p/5171054#M1115581 Mark Elsen 2024-09-04T15:44:10Z https://community.cisco.com/t5/network-security/ten-142960/m-p/5171062#M1115582 <P><a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/1779292">@tlmckinnon94</a>&nbsp;</P> <P>Upgrade to version 4.1(2a) or 4.1(1a)</P> <P>&nbsp;</P> <P>&nbsp;</P> <P><A href="https://bst.cisco.com/quickview/bug/CSCvs27322" target="_blank">https://bst.cisco.com/quickview/bug/CSCvs27322</A></P> <P>&nbsp;</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="FlavioMiranda_0-1725465023686.png" style="width: 909px;"><img src="https://community.cisco.com/t5/image/serverpage/image-id/227791i36B5736DDE8E73DB/image-dimensions/909x274?v=v2" width="909" height="274" role="button" title="FlavioMiranda_0-1725465023686.png" alt="FlavioMiranda_0-1725465023686.png" /></span></P> <P>&nbsp;</P> Wed, 04 Sep 2024 15:51:32 GMT https://community.cisco.com/t5/network-security/ten-142960/m-p/5171062#M1115582 Flavio Miranda 2024-09-04T15:51:32Z https://community.cisco.com/t5/network-security/ten-142960/m-p/5171074#M1115583 Thank you. I'm seeing this vulnerability on version 3.2.<BR /> Wed, 04 Sep 2024 16:13:38 GMT https://community.cisco.com/t5/network-security/ten-142960/m-p/5171074#M1115583 tlmckinnon94 2024-09-04T16:13:38Z https://community.cisco.com/t5/network-security/ten-142960/m-p/5171110#M1115584 <P>&nbsp;</P> <P>&nbsp; &nbsp; - From :&nbsp;<A href="https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvs27322" target="_blank">https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvs27322</A><BR />&nbsp; &nbsp; &nbsp; &gt;...</P> <P>&nbsp;<STRONG> &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;Known Fixed Releases</STRONG><BR />&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;<FONT color="#008000"><EM> &nbsp;<SPAN>4.1(2a)UCSM</SPAN></EM></FONT></P> <DIV class="node-wrapper custom-text-color-light highlight"> <DIV class="node-content-wrapper"><FONT color="#008000"><EM><SPAN class="qtr-padding">&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;4.1(1a)</SPAN></EM></FONT></DIV> <DIV class="node-content-wrapper"><SPAN class="qtr-padding">&nbsp; M.</SPAN></DIV> </DIV> Wed, 04 Sep 2024 16:39:21 GMT https://community.cisco.com/t5/network-security/ten-142960/m-p/5171110#M1115584 Mark Elsen 2024-09-04T16:39:21Z