cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

CISCO SWITCHES FOR SMALL and MEDIUM BUSINESS

Introducing the next generation of Cisco Small and Medium Business Switches. Cisco is refreshing its SMB Switch portfolio. Click here  to learn more.


246
Views
5
Helpful
3
Replies
Beginner

Vunerability scan SG300

I have recently upgraded the firmware on a SG300-28 to 1.4.10.6

I am now getting a vulnerability scan result with the title: Web Server Generates CORS Headers Using User Supplied Values

This is being flagged on port 80 and port 443.

Does anyone have an idea on where I would start on dealing with this issue?

Thanks!

Ed Gallagher

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Cisco Employee

Re: Vunerability scan SG300

Hi Ed,

This type of error was reported earlier for 350/550 series Switches, and it used to generate due to the introduction of SNA feature. However, for 300 series switches with the latest firmware 1.4.10.6 it was not reported earlier.

 

Please open a service request with us by contacting our frontline number; accordingly we can investigate further on this issue. Please follow the below mentioned link to contact us…

https://www.cisco.com/c/en/us/support/web/tsd-cisco-small-business-support-center-contacts.html

3 REPLIES 3
VIP Advisor

Re: Vunerability scan SG300

Hi there,

Personally I would just disable the HTTP(S) service on the switch and just administrate it vai SSH:

!
no ip http server
no ip http secure-server
!

cheers,

Seb.

Highlighted
Cisco Employee

Re: Vunerability scan SG300

Hi Ed,

This type of error was reported earlier for 350/550 series Switches, and it used to generate due to the introduction of SNA feature. However, for 300 series switches with the latest firmware 1.4.10.6 it was not reported earlier.

 

Please open a service request with us by contacting our frontline number; accordingly we can investigate further on this issue. Please follow the below mentioned link to contact us…

https://www.cisco.com/c/en/us/support/web/tsd-cisco-small-business-support-center-contacts.html

Beginner

Re: Vunerability scan SG300

Thank you!