10-03-2017 01:35 AM
Since a few weeks we are applying a patch management process on our Cisco devices. The idea is to generate a monthly PISRT report on Cisco prime. If there are vulnerable devices, then we deploy the new firmware through cisco prime. My problem is the the semi annual vulnerability list published by cisco last week :https://tools.cisco.com/security/center/viewErp.x?alertId=ERP-63410 When generating the cisco prime report, i expected to see a lot of devices vulnerable, but it s not the case. It seems that Cisco Prime PSIRT definition are not up to day.
Questions :
* does anybody have any clue of the usual delay between the vulnerability publication and the update of the PSIRT report on Cisco prime ?
* Given a specific CVE, is there a way to have the visibility on Cisco prime if the CVE is checked in the PSIRT report ? and which devices are not patched specifically on this CVE ?
10-03-2017 07:34 AM
Hi Johann,
Thank you for reaching out. This seems to be a potential problem with Cisco Prime. For Cisco Prime products, please open a TAC case and we will have an engineer investigate the issue that you are experiencing:
https://www.cisco.com/c/en/us/support/index.html
Thank you!
Omar
02-08-2018 10:35 PM
I am facing similar problem. You got any solution for that ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide