Re: CSCvn77156 - Cisco Secure Boot Hardware Tampering Vulnerability

Sridhar Anbalagan · ‎07-15-2019

My customer is impacted by this vulnerability. They have around 300+ ISR4K device. I have couple of questions.

I hope the attacker needs a console access or physical access to the device to trigger the vulnerability? Please confirm the same.
Instead of upgrading the CPLD via Rommon, May I use Hardware-Programmable Firmware Package and upgrade hw-programmable cpld cli to upgrade the CPLD remotely?

Leo Laohoo · ‎07-15-2019

The flaw is in the ROMMON so an attacker will need physical access to the appliance.
Cisco has already released a patches to close this vulnerability.

George Karavitis · ‎08-21-2019

I would guess also remote console access is vulnerable, not only physical access.

@Leo Laohoo wrote:
The flaw is in the ROMMON so an attacker will need physical access to the appliance.

betoul.alsabagh · ‎01-17-2020

We have this issue too, can we upgrade the Firmware of the ISR 4331 remotely? as we have these routers in our branches

Leo Laohoo · ‎01-17-2020

@betoul.alsabagh wrote:

can we upgrade the Firmware of the ISR 4331 remotely

No, not possible. The patch needs to be executed in ROMMON.

Kindly read this: Instructions for Addressing the Cisco Secure Boot Hardware Tampering Vulnerability on Cisco ISR 4000 Series Routers

NOTE: If an unauthoried person has managed to gain access to your router and switches, these (router and switches) are the least of your worries, particularly when the site(s) have servers or other hardware.