01-18-2024 03:33 AM
We have a cisco firewall of asa5525x we have the vulnerability of OpenSSH < 8.0. Please assist us to remediate this.
01-18-2024 04:50 AM
I presume this is based on a system scan. Please share the CVE reference for the vulnerability you are seeing.
01-18-2024 05:00 AM
Hello Marvin yes it is based on a system scan for compliance purpose and they just gave it a medium risk with CVSS Score=4.0-6.9
01-18-2024 05:07 AM
CVSS is the severity score. I was asking for the CVE = the actual Common Vulnerability and Exposure ID.
01-18-2024 05:13 AM
Ok, sorry, these are the CVEs
(CVE-2018-20685)(CVE-2019-6109, CVE-2019-6110)(CVE-2019-6111)
01-18-2024 05:45 AM
I see a couple of unresolved bugs that could lead to this finding:
Do you have the scp server enabled on your ASA ("ssh scopy enable")?
01-18-2024 05:48 AM
We are just managing it through fmc still now. I don't think it is enabled.
01-18-2024 05:50 AM
Ok, so we don't have solution currently.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
