Solved: Re: TCP Timestamp Response Vulnerability on 2900, 3000 catalyst switch

itorr14 · ‎07-24-2024

Does anyone know and have concrete documentation whether the TCP Timestamp response vulnerability affects the 2900, 3000 catalyst switches? If so, which version is compromised? I searched for a while, and I mainly found that it's affecting the Cisco 9000 series on 12.2(2f) 13.2(7f) 14.2(3j) releases based on this link.

https://bst.cisco.com/quickview/bug/CSCvs45596

please help

Leo Laohoo · ‎07-24-2024

@itorr14 wrote:

Does anyone know and have concrete documentation whether the TCP Timestamp response vulnerability affects the 2900, 3000 catalyst switches? If so, which version is compromised? I searched for a while, and I mainly found that it's affecting the Cisco 9000 series on 12.2(2f) 13.2(7f) 14.2(3j) releases based on this link.

https://bst.cisco.com/quickview/bug/CSCvs45596

please help

Bug ID says "Cisco Nexus 9000 Series Fabric Switches". No mention of Catalyst switches.

For more in-depth information, raise a TAC Case.

View solution in original post

Leo Laohoo · ‎07-24-2024

@itorr14 wrote:

Does anyone know and have concrete documentation whether the TCP Timestamp response vulnerability affects the 2900, 3000 catalyst switches? If so, which version is compromised? I searched for a while, and I mainly found that it's affecting the Cisco 9000 series on 12.2(2f) 13.2(7f) 14.2(3j) releases based on this link.

https://bst.cisco.com/quickview/bug/CSCvs45596

please help

Bug ID says "Cisco Nexus 9000 Series Fabric Switches". No mention of Catalyst switches.

For more in-depth information, raise a TAC Case.

TCP Timestamp Response Vulnerability on 2900, 3000 catalyst switches