Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
620
Views
1
Helpful
2
Replies

APIC Nodes vulnerability with respect to OpneSSH

Noovi
Level 1
Level 1

‎12-02-2023 08:22 AM

Hello Guys,

Just want to know, how to check Open SSH version on Leaf switches in ACI? is there any command?

Also, want to know if vulnerability with CVE code CVE-2020-15778 affected in ACI setup with which version.

{I am having APIC version as 4.0(2c)}

1 person had this problem
Labels:
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎12-03-2023 04:25 AM

check below URL :

https://sec.cloudapps.cisco.com/security/center/publicationListing.x

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

BrianSekleckiGE
Level 1
Level 1

‎12-03-2023 09:51 AM

BTW, from any OpenSSH Client (POSIX Platform), you would just run "ssh -v -v [remote host]" to learn the version-string announced by the remote server.   Take note that even if the numerical version appears to be vulnerable, there may be a Patch level indicated "p2" or "sr1" etc. appended to the version string, added by a redistributor.  Then you need to know if the redistributing vendor (like Cisco) has backported a fix/patch from the OEM (OpenSSH/OpenBSD project) into to their codebase, or if there is an intermediary agency, like a GNU/Linux distribution (Debian, RedHat, etc.) that complicates the situation through their RPM process.  A lot of false positives in the Nessus/Tenable world come from misunderstanding this.

 

Customers Also Viewed These Support Documents

Save 25% on Day-2 Operations Add-On License