I use few csr1000v for our cloud routers in lab and production for vpn with other routers and vpc redundancy.
I use eventmanager trigger for csr GRE vpc redundanc.
Noted this bug last week:
The publish-event event-manager feature in Cisco IOS 15.5(2)S and 15.5(3)S on Cloud Services Router 1000V devices allows local users to execute arbitrary commands with root privileges by leveraging administrative access to enter crafted environment variables, aka Bug ID CSCux14943.
Is there any better solution or patch for this bug instead of not using the configuration or monitoring?