9.6.4 don`t have bug (SSL VPN) but 9.6.3 is sugessted by cisco.
But 9.6(3) is vulnerable. The "gold star" has been there BEFORE the vulnerability was discovered.
I know that 9.6.(3) is vulnerable but 18.104.22.168 is not vulnerable.
Upgrade to which version is prefer from 22.214.171.124? To 126.96.36.199 (Interim) or 9.6.4?
However, the release notes for this version are still blank.
The people working in the Security area work at different "speed" compared to other areas, like documentation.
The slides from the Recon Conference are now public and I imagine exploit tools are being created right now.
The PSIRT was updated today. 9.6(3.20) is no longer considered Fixed. For 9.6.x the First Fixed is now 9.6(4.3), see screenshot below. Hope this helps, Tim
Thanks, I saw the update security notice after I posted and updated my firewalls to the recommended release.