10-05-2022 07:47 AM
We have done vulnerability scan and found few vulnerability for Cisco IM & Presence & Cisco unified communication manager.
Vulnerability 1 : Port 80 is open for Cisco IM & Presence.
Ask : Do we need to have port 80 open or can we disable that port ?
Vulnerability 2 : We found vulnerability on Cisco IM & Presence & Cisco unified communication manager and I believe upgrading these 2 servers to latest release will also help us close those vulnerability.
Ask 1 : We found different Cucm version, server 1 : 12.5.1.13027-1 , server 2,3&4 : 12.5.1.12900 . So what would be the latest release to upgrade the CUCM version ?
Ask 2 : Cisco IM & presence is on 12.5.1.12900, what would be the latest release to upgrade the Cisco IM & presence.
Solved! Go to Solution.
10-05-2022 08:48 AM
Around the ports, there are port usage documents online that provide the exact ports used by CUCM/IM&P, review that documentation.
Around the latest release, go to the downloads area on cisco.com and browse to CUCM and IM&P, the available releases, including the latest one, are going to be there, along with the README/RNs of each one that need to be reviewed to understand compatibility and bugs.
You need to run ALL your servers in the same CUCM release, whoever left your system with a mix of versions had no idea what he was doing and you should get a reputable consultant or a Cisco partner WITH voice specializations to assist. Right now, you need to get all your servers to the same version the PUB has before even thinking about any other upgrade.
10-05-2022 10:41 AM
Based on the information shared you seem to be running an ES, Engineering Special, release on your CM pub. 12.5.1.13027 is not a normal release as those would be ending with 900. The other nodes in your cluster is running SU2 based on your shared information, that is denoted by the 12900 in the version. The latest release is version 14 SU2, but there are a number of releases available in the 12.5 release train as well. In this release SU6 is the latest version.
I would recommend you to upgrade your publishers, both CM and IMP, as soon as possible to this release and then immediately after all the subscribers.
10-05-2022 08:48 AM
Around the ports, there are port usage documents online that provide the exact ports used by CUCM/IM&P, review that documentation.
Around the latest release, go to the downloads area on cisco.com and browse to CUCM and IM&P, the available releases, including the latest one, are going to be there, along with the README/RNs of each one that need to be reviewed to understand compatibility and bugs.
You need to run ALL your servers in the same CUCM release, whoever left your system with a mix of versions had no idea what he was doing and you should get a reputable consultant or a Cisco partner WITH voice specializations to assist. Right now, you need to get all your servers to the same version the PUB has before even thinking about any other upgrade.
10-05-2022 10:41 AM
Based on the information shared you seem to be running an ES, Engineering Special, release on your CM pub. 12.5.1.13027 is not a normal release as those would be ending with 900. The other nodes in your cluster is running SU2 based on your shared information, that is denoted by the 12900 in the version. The latest release is version 14 SU2, but there are a number of releases available in the 12.5 release train as well. In this release SU6 is the latest version.
I would recommend you to upgrade your publishers, both CM and IMP, as soon as possible to this release and then immediately after all the subscribers.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide