Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
760
Views
0
Helpful
1
Replies

SG300 and SG500 SSH Vuln

dbrill001
Level 1
Level 1

‎07-19-2019 07:09 AM

SO I have patched all of my switches and I do a vulnerability scan after each and every patch to see how it looks. I have many SG500s and a few SG300s. Most of the switches came up clean after that last patch. I have 2 SG500s and 2 SG300s that come up with the following vulnerabilities. 

 

OpenSSH Denial of Service And User Enumeration Vulnerabilities (Windows)

OpenSSH X11 Forwarding Security Bypass Vulnerability (Windows)

OpenSSH Multiple Vulnerabilities Jan17 (Windows)

OpenSSH 'auth2-gss.c' User Enumeration Vulnerability (Windows)

OpenSSH 'sftp-server' Security Bypass Vulnerability (Windows)

 

I have verified all switches are running the most current Boot Code and Firmware. Has anyone else seen this?

 

Labels:
0 Helpful
1 Reply 1

joshk@nsinetwork.com
Level 1
Level 1

‎12-31-2019 05:57 AM

I have the same vulnerabilities with stacked SG500. Did you find the fix?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X
Customers Also Viewed These Support Documents