cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
245
Views
0
Helpful
5
Replies

Asa Vulnerability

sachin garg
Level 1
Level 1

ASA version is I know, how to check, is there any way to check below vul for ASDM version as well?

 

Sr No. Model ASA Version ASDM version
1 ASA 5555-X 9.12(4)67 7.19(1)95
2 ASAv50 9.18(4)22 7.19(1)95

 

CVE ID Cisco Link
CVE-2024-20360 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-sqli-WFFDnNOs
   
   
   
   
   

 

5 Replies 5

@sachin garg that vulnerability is for "Cisco Firepower Management Center Software SQL Injection Vulnerability" - so would not affect ASDM.

@sachin garg

You can find out if the vulnerabilities apply to you by using the checker on the links.

RobIngram_0-1726134070712.png

The vulnerabilities that related to FTD software would not apply, nor would CVE-2022-20760 or CVE-2024-20355.

 
Regardless the ASA 5555-X is EOL as is 9.12 and no longer supported. You should look to replace the hardware and run the latest software version (presently 9.20).

sachin garg
Level 1
Level 1

Thanks for above, however technical support is still thr refer below URLs . Please share the different link for EOS, if any.

however for the above snap which you shared to find the impact of vulnerability, if ASDM is not listed does it mean ASDM is not impacted. How do we make sure that ASDM is impacted?

https://www.cisco.com/c/en/us/products/collateral/security/asa-firepower-services/adaptive-security-appliance-9-12x-eol.html

https://www.cisco.com/c/en/us/products/collateral/security/asa-firepower-services/asa5525-5545-5555-series-3-yr-subscrip-eol.html

 

Review Cisco Networking for a $25 gift card