Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1539
Views
1
Helpful
2
Replies

IOS software checker vs. CVRF

Infosim
Visitor

‎06-30-2017 07:17 AM

Hi,

I've noticed that the data provided by the IOS software checker sometimes is different from the data provided by the CVRF files. For example the CVRF of advisory cisco-sa-20151218-ios states that IOS 15.5(3)M1 is affected, but the software checker states, that it is not.

For my use case I don't need to check vulnerabilities for one or some IOS versions, but I want to know which versions are affected by a vulnerability so I have to rely on the CVRF files.


I think this is a known issue and wanted to ask if we can expect a solution soon?

1 person had this problem
0 Helpful
2 Replies 2

Omar Santos
Cisco Employee
Cisco Employee

‎07-14-2017 05:38 PM

Hi Stefan,

This is a known issue. The best course of action is to use the IOS Software checker integration with the API. CVRF files have limited support for software versions.

CMurphy24
Community Member

‎04-24-2019 04:34 AM

This seems to be a known issue - I logged a TAC and received the following response:  

 

In this case, I would suggest you to use the following Cisco IOS Software Checker since it is a reliable source from Cisco: https://tools.cisco.com/security/center/softwarechecker.x

0 Helpful
Customers Also Viewed These Support Documents