11-27-2019 04:44 AM
Hi,
We had an internal vulnerability scan done on network devices, & as part of the vulnerability report, there is a finding of "Cisco IOS IKEv1 Packet Handling Remote Information Disclosure - Upgrade to the relevant fixed version referenced in Cisco bug ID -CSCvb29204" on Cisco 2921 Router.
Currently, Cisco 2921 router is currently running on Version 15.2(4)M6. Please let me know how to mitigate this vulnerability
11-27-2019 06:34 AM
- By upgrading to one of the fixed version(s) mentioned in the bug report.
M.
11-27-2019 05:35 PM
Hi,
the answer was already in your question:
Upgrade to the relevant fixed version referenced in Cisco bug ID -CSCvb29204" on Cisco 2921 Router.
Best regards
Julian
11-27-2019 10:40 PM
11-28-2019 01:01 AM
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvb29204/?rfs=iqvred
M.
11-28-2019 01:07 AM
Hi!
Do you have access here?
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvb29204/?rfs=iqvred
List of known fixed releases is quite long.
According to cisco.com, current recommended release for Cisco 2921 is 15.7.3M5(MD).
Hope that helps
Julian
P.S. please always mark helpful replies or solution if applicable
05-09-2022 05:17 AM
What is there with this cisco indication, only update but does not solve the vulnerability.
URL: https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvb29204
Cisco will release software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide