Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
140
Views
0
Helpful
1
Replies

ASA5516 Cisco Firepower vulnerability upgrade

TACTechSupport35482
Level 1
Level 1

‎03-01-2024 03:27 AM

Hi All 

Apologies if question is vague - very much a Voice / Router / Switch engineer - Im just delving into security area recenlty 

With regards to the below vulnerabililty alert 

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-info-disclose-9eJtycMB

We currently have the following versions 

 current ASA version is 9.6.4 (40) Looks as this is vulnerable and needs upgrading 

 FMC version is Software 7.3.0 This is not affected

We understand we do need to upgrade ASA but for now are we protected as traffic routes through FMC before it hits the ASA 

Many Thanks 

 

0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎03-01-2024 03:31 AM

@TACTechSupport35482 traffic does not route through the FMC, that's the management console. Also the ASA itself is not managed by the FMC, only the Firepower Services Module (if you are using this).

The vulnerability refers to an AnyConnect VPN, so you would need to upgrade the ASA software to fixed release as per your link.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card