Re: Cisco Bug ID-CSCvb29204 in CISCO2921/K9 router

preetpeethambaran · ‎11-27-2019

Hi,

We had an internal vulnerability scan done on network devices, & as part of the vulnerability report, there is a finding of "Cisco IOS IKEv1 Packet Handling Remote Information Disclosure - Upgrade to the relevant fixed version referenced in Cisco bug ID -CSCvb29204" on Cisco 2921 Router.

Currently, Cisco 2921 router is currently running on Version 15.2(4)M6. Please let me know how to mitigate this vulnerability

Mark Elsen · ‎11-27-2019

- By upgrading to one of the fixed version(s) mentioned in the bug report.

M.

-- Let everything happen to you
   Beauty and terror
      Just keep going
     No feeling is final
Reiner Maria Rilke (1899)

julian.bendix · ‎11-27-2019

Hi,

the answer was already in your question:

Upgrade to the relevant fixed version referenced in Cisco bug ID -CSCvb29204" on Cisco 2921 Router.

Best regards
Julian

preetpeethambaran · ‎11-27-2019

Hi,

Can you please share the link for bug report, as I am not able to find fixed release details.

Mark Elsen · ‎11-28-2019

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvb29204/?rfs=iqvred

M.

-- Let everything happen to you
   Beauty and terror
      Just keep going
     No feeling is final
Reiner Maria Rilke (1899)

julian.bendix · ‎11-28-2019

Hi!

Do you have access here?

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvb29204/?rfs=iqvred

List of known fixed releases is quite long.
According to cisco.com, current recommended release for Cisco 2921 is 15.7.3M5(MD).

Hope that helps
Julian

P.S. please always mark helpful replies or solution if applicable

wilson84 · ‎05-09-2022

What is there with this cisco indication, only update but does not solve the vulnerability.

URL: https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvb29204

Cisco will release software updates that address this vulnerability. There are no workarounds that address this vulnerability.