04-28-2024 07:58 AM
Hi, im running a Cisco ASA 5505 with 9.1(2) with Anyconnect enabled. I read that there are some vulnerabilities on this device. Am i affected or any recommendations on what i should do?
04-28-2024 08:08 AM
04-28-2024 06:19 PM
Cisco Event Response: Attacks Against Cisco Firewall Platforms
#1 & #2 are currently being actively exploited in the wild.
Exploitation and Public Announcements
Cisco has confirmed that this vulnerability has been exploited. Cisco strongly recommends that customers upgrade to fixed software to resolve this vulnerability. Customers are also strongly encouraged to monitor system logs for indicators of undocumented configuration changes, unscheduled reboots, and any anomalous credential activity.
Further reading:
04-29-2024 02:11 AM
There really is not much you can do with that hardware. The last supported version for ASA5505 is 7.0.4. To protect yourself against the recent vulnerabilities you would need to upgrade your hardware and then install the latest fixed version of ASA or FTD (depending on which you go for.)
05-02-2024 02:28 AM
Seriously ?
There is so much CVE issue applicable to such an old ASA version ! It is a crazy situation.
I don't know what you expect to protect with that but if it is exposed to Internet, I guess it might be already compromised. As @Marius Gunnerud said, just upgrade to a supported hardware and a supported code.
Good luck.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide