07-15-2019 10:13 PM
My customer is impacted by this vulnerability. They have around 300+ ISR4K device. I have couple of questions.
07-15-2019 11:37 PM
The flaw is in the ROMMON so an attacker will need physical access to the appliance.
Cisco has already released a patches to close this vulnerability.
08-21-2019 03:25 AM
I would guess also remote console access is vulnerable, not only physical access.
@Leo Laohoo wrote:The flaw is in the ROMMON so an attacker will need physical access to the appliance.
01-17-2020 08:27 AM
We have this issue too, can we upgrade the Firmware of the ISR 4331 remotely? as we have these routers in our branches
01-17-2020 03:52 PM
@betoul.alsabagh wrote:
can we upgrade the Firmware of the ISR 4331 remotely
No, not possible. The patch needs to be executed in ROMMON.
Kindly read this: Instructions for Addressing the Cisco Secure Boot Hardware Tampering Vulnerability on Cisco ISR 4000 Series Routers
NOTE: If an unauthoried person has managed to gain access to your router and switches, these (router and switches) are the least of your worries, particularly when the site(s) have servers or other hardware.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide