03-01-2018 12:21 PM - edited 03-20-2019 09:57 PM
So does this affect only the 16.7 code train or every IOS XE version (16.x and 3.16.x) before 16.8?
03-23-2018 05:48 AM
Has anyone confirmed the affected IOX XE train?
04-04-2018 08:28 AM
Nessus scans are showing it on 3.x and 16.x for us - is this why you are asking? I don't see it being addressed or patched in the March 16.3.5 release either.
04-04-2018 08:40 AM
Yes and No, I'm asking because my systems are not running the 16.3 train code. I'm using 15.xx, IOS XE train. But commonly, Cisco newly discovered bugs impacts older code, they just did express that when the code was released. Like Microsoft, we don't always push the latest version because of the new findings. I allow everyone else to experience the pain first.
05-16-2018 12:45 PM
Hello:
according to CSCvg41950 release notes:
As of March 13th, 2017, all Cisco IOS XE software releases are affected by this vulnerability.
As of today, the following trains have the fix or will have the fix when it releases.
16.8.1
16.7(2)
16.6(4)
16.5(2)
16.3(7)
next rebuild 3.16.8S should have fix to address the issue in 3.x trains.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide