Solved: CSCvf47808 - Is this Bug ID addressing all the 10 CVE ?

jegan_rajappa · ‎10-18-2017

CSCvf47808 - Is this Bug ID addressing all the 10 CVE ?

CVE-2017-13077

CVE-2017-13078

CVE-2017-13079

CVE-2017-13080

CVE-2017-13081

CVE-2017-13082

CVE-2017-13084

CVE-2017-13086

CVE-2017-13087

CVE-2017-13088

Leo Laohoo · ‎10-19-2017

@jegan_rajappa wrote:

Thanks for reply, we have many deployments with 8.0.121.0, 8.0.133.0, 8.0.140.0 in production, as per bug it seems only 8.5.103.0 is affected, do i still need to go for upgrade ?

All the versions you've mentioned are affected. Wait for Cisco to release the software fix and upgrade.

Remember, the problem is not just at the AP-end. Both APs and wireless clients need to be patched. Patching the client will fix 9 out of 10 vulnerabilities but not CVE-2017-13082.

View solution in original post

Leo Laohoo · ‎10-19-2017

Yes it does.

jegan_rajappa · ‎10-19-2017

Thanks for reply, we have many deployments with 8.0.121.0, 8.0.133.0, 8.0.140.0 in production, as per bug it seems only 8.5.103.0 is affected, do i still need to go for upgrade ?

Leo Laohoo · ‎10-19-2017

@jegan_rajappa wrote:

Thanks for reply, we have many deployments with 8.0.121.0, 8.0.133.0, 8.0.140.0 in production, as per bug it seems only 8.5.103.0 is affected, do i still need to go for upgrade ?

All the versions you've mentioned are affected. Wait for Cisco to release the software fix and upgrade.

Remember, the problem is not just at the AP-end. Both APs and wireless clients need to be patched. Patching the client will fix 9 out of 10 vulnerabilities but not CVE-2017-13082.