3.1 hotpatch installation for fixingISE Evaluate OpenSSH CVE-2024-6387 - Cisco Community

|

|

952

Views

0

Helpful

1

Replies

Please confirm if any issue observed on below hotpatch installation on 3.1 version. Patch we are currently in is 8.

Workaround:

-- A hotpatch for 3.1 is now available at https://software.cisco.com/download/home/283801620/type/283802505/release/HP-3.1-CSCwk61938

1 Reply 1

Hi,

I already installed it on my Lab node and seems its running with OpenSSH version 9.1 but Openssh remediated version is 9.8 or later. However, Cisco is mentioned explicitly as below,

NOTE: Cisco uses a customized library for SSH, the fix for this vulnerability is implemented in CiscoSSH 1.13.48 (based on OpenSSH 9.1)

https://tools.cisco.com/bugsearch/bug/CSCwk61938

Please refer our other community thread,
https://community.cisco.com/t5/network-access-control/cisco-cve-2024-6387-openssh-server-regresshion/td-p/5142801

Thanks,
Saravana

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community

Related community topics

Subject

Author

Posted

Re: CSCwk61938 - ISE Evaluate OpenSSH CVE-2024-6387 "regreSSHion&

‎08-27-2024 10:30 AM

Re: CSCwk61216 - Evaluate OpenSSH CVE-2024-6387 "regreSSHion"

‎07-15-2024 07:03 PM

CSCwk62296 - Evaluation of ssp for OpenSSH regreSSHion vulnerability

‎07-12-2024 09:58 AM

ISE - Localized Installation (versão Português)

‎01-06-2025 07:24 AM

Cisco ISE 3.1 hotpatch installation to address CSCwk61938 OpenSSH

‎08-16-2024 03:14 AM