Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3161
Views
0
Helpful
1
Replies

CIMC SSH/Dropbear Server Vulnerabilities CVE-2016-7406 - 7409

scottrobertson2ctr
Level 1
Level 1

‎11-25-2016 08:34 AM - edited ‎03-20-2019 09:10 PM

Hello,

I can see  there is not a patch for these Dropbear SSH server vulnerabilities as of yet. Does anyone have an idea when we can expect a patch ?

Thank you

Scott Robertson 

6 people had this problem
Labels:
0 Helpful
1 Reply 1

wmchan1979
Level 1
Level 1

‎12-19-2016 06:30 PM

Hi all,

I could not locate any official Security Advisories and Alerts describing the following four CVEs.

CVE-2016-7406
CVE-2016-7407
CVE-2016-7408
CVE-2016-7409

I only managed to locate the following platform-specific DDTS (UCS and Nexus 1000v for VMware).

CSCvb62003 - CIMC SSH/Dropbear Server Vulnerabilities CVE-2016-7406 - 7409 (Cisco Unified Computing System)
CSCvb56092 - Multiple Nexus 1010 dropbear SSH vulnerabilities (Cisco Nexus 1000V Switch for VMware vSphere)
CSCvc24266 - UCS-E CIMC Dropbear SSH vulnerability - 2016 (Cisco UCS E-Series Software)
CSCvb94592 - CIMC SSH/Dropbear Server Vulnerabilities CVE-2016-7406 - 7409 (Cisco Unified Computing System)
CSCvb56137 - CIMC SSH/Dropbear Server Vulnerabilities CVE-2016-7406 - 7409 (Cisco Unified Computing System)


Anyone knows if other platform is affected by these Dropbear SSH vulnerabilities?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents