¯\_(ツ)_/¯

webabc123 · ‎10-19-2021

Which version of IOS patches this advisory?

Cisco IOS XE Software for Catalyst 9000 Family Wireless Controllers CAPWAP Remote Code Execution Vulnerability

I can't find any IOS XE version released around the date of the advisory. The newest version I see is from July and I don't see anything that says what specifically fixes the issue other than applying a vaguely mentioned update with no details.

Leo Laohoo · ‎10-19-2021

At the bottom of the Security Bulletin is a Software Checker, did anyone made any attempt (even tried) to check?

webabc123 · ‎10-19-2021

Why not just list the minimum version numbers plainly? No need to hide it behind a puzzle or CAPTCHA exercise.

A simple list of affected or patched versions would make sense or just say “upgrade to at least ‘X’ version or higher to address the vulnerability.”

Leo Laohoo · ‎10-19-2021

@webabc123 wrote:

Why not just list the minimum version numbers plainly?

¯\_(ツ)_/¯

webabc123 · ‎10-20-2021

I still don’t have an answer.

Even after entering a version number, being redirected to another page with a captcha and the completing the captcha, the results didn’t say whether or not the version is safe from the vulnerability. Instead it only referred to a vulnerability for 2019.

webabc123 · ‎10-20-2021

I still don’t have an answer.

Even after entering a version number, being redirected to another page with a captcha and then completing the captcha, the results didn’t say whether or not the version is safe from the vulnerability. Instead it only referred to a vulnerability for 2019.

Leo Laohoo · ‎10-20-2021

I have tested the software verification check and it works.

webabc123 · ‎10-20-2021

Why does it list another old vulnerability by name, but not mention this vulnerability by name?

Why is it difficult to just post a list of versions that are patched against the vulnerability right in the advisory or else post a link in the advisory to another page with that info?

IOS XE 9300 WLAN September Security Updates?

¯\_(ツ)_/¯