Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
481
Views
15
Helpful
2
Replies

CSCvn20358 - Cisco IOS XE Software Web UI Command Injection Vulnerability

eng_ahbadawi
Level 1
Level 1

‎06-13-2019 05:48 AM

my knowledge in Cisco is not Soled so, please I would like to know with a simple way which of my devices is infected?

and where to download the update knowing that I do not have current service agreement with Cisco.

 

Labels:
2 Replies 2

Leo Laohoo
Hall of Fame
Hall of Fame

‎06-14-2019 12:56 AM

Read Cisco IOS XE Software Web UI Command Injection Vulnerability, scroll down to the "Customers Without Service Contracts" section and read the first two paragraphs.

User404
Level 1
Level 1

‎07-16-2019 06:22 AM - edited ‎07-16-2019 06:23 AM


Hi,

here you can see the affected Product IDs (scroll below).
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190513-secureboot

If a product ID matches, then click on the Cisco Bug ID, it will show you which knowen affected IOS versions exist and which IOS have the fix.
bug.png

Hope this helps!

 

Cheers,

Andre

Customers Also Viewed These Support Documents