04-19-2022 06:00 AM
Hi Experts ,
Can someone guide me how to check if this vulnerability impacting the software version which we use ,
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-priv-esc-ybvHKO5
Cisco IOS XE Software, Version 17.03.03
Cisco IOS Software [Amsterdam], Catalyst L3 Switch Software (CAT9K_LITE_IOSXE), Version 17.3.3, RELEASE SOFTWARE (fc7)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2021 by Cisco Systems, Inc.
Compiled Thu 04-Mar-21 08:48 by mcpre
04-19-2022 08:45 AM
- FYI : https://tools.cisco.com/security/center/softwarechecker.x
M.
04-19-2022 09:05 AM
First available fix is 17.3.5 , So should we upgrade the IOS in this case ?
04-19-2022 09:18 AM
- That depends on your security 'needs' and requirements , banks for instance may upgrade immediately , it needs to be assessed with IT staff and organization.
M.
04-19-2022 03:52 PM
Upgrade directly to 17.3.5.
04-22-2022 07:32 AM
17.3.5 has a bug CSCwb13784 .
APs not able to join 9800 due to invalid path MTU in AP Join request.
Symptom: APs not able to join 9800 running 17.3.5, 17.6.2, 17.7.1 9800 ra-traces with ethernet mac: AP disconnect initiated. Reason: Invalid path MTU, Phase: Join Invalid MTU value 0 in join request
04-22-2022 06:57 PM - edited 04-22-2022 06:58 PM
@aci_network_test wrote:
17.3.5 has a bug CSCwb13784 .
REMINDER:
The question is this: Are you hitting CSCwb13784?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide