Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
406
Views
5
Helpful
2
Replies

CSCum35502 Bug Vulnerable releases

ITforever
Level 1
Level 1

‎05-28-2017 07:12 PM - edited ‎03-20-2019 09:22 PM

Hello,

I am wondering if the version 6.2.6 on N7Ks is vulnerable?

According to this link, the first fixed release is 6.2.16 and hence, 6.2.6 is vulnerable:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-nxaaa

According to this link, the 6.2.5 is the only affected release and 6.2.6 is not in the list of the fixed releases:

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCum35502

Any clarification is much appreciated.

Thanks

Labels:
0 Helpful
2 Replies 2

Rob Huffman
Hall of Fame
Hall of Fame

‎05-31-2017 06:54 AM

Hi there,

In the Cisco Bug notes as you linked above CSCum35502 they don't list all the affected releases and usually only list the "first found in" releases that is why only 6.2.5 is shown. In this case (and many others) you need to go with the tech notes that list the "First fixed-in" versions for the affected products which in your case is 6.2.16. 

So, yes, 6.2.6 would be a vulnerable version.

Cheers!

Rob

ITforever
Level 1
Level 1
In response to Rob Huffman

‎06-01-2017 05:41 PM

Thanks, Rob. Very helpful. 

0 Helpful
Customers Also Viewed These Support Documents