Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

CSCum96401 - Cisco ASA IKEv2 Denial of Service Vulnerability

Hi Everyone,

 

ASA is configured with ikev2 and below is config

5520# show running-config crypto ikev2 | include enable

crypto ikev2 enable outside client-services port 443

5520# show running-config crypto map | include interface

crypto map outside_map interface outside

 

I checked below weblink

CSCum96401 - Cisco ASA IKEv2 Denial of Service Vulnerability

Not Affected

Not Affected

Not Affected

8.4(7.15)

Not Affected

8.6(1.14)

Not Affected

9.0(4.8)

9.1(5.1)

Not Affected

Not Affected

 

https://tools.cisco.com/bugsearch/bug/CSCum96401

 

ASA which i am running has version Cisco Adaptive Security Appliance Software Version 8.4(7)

sh flash shows

asa847-k8.bin

 

Need to confirm if my ASA is not effected by this bug?

 

Regards

MAhesh

 

 

 

2 ACCEPTED SOLUTIONS

Accepted Solutions
Cisco Employee

Hi Mahesh, Your ASA code 

Hi Mahesh,

 

Your ASA code  (asa847-k8.bin) is affected by this Bug, recommended release is 8.4(7.23) and later.

this bug is first fixed in 8.4(7.15).

 

Thanks,

Prashant Joshi

Hall of Fame Super Silver

Hi Mahesh,Upgrading to an

Hi Mahesh,

Upgrading to an interim maintenance release from within the same minor release will not change any configuration (other than the boot image name, that is). 

4 REPLIES
Cisco Employee

Hi Mahesh, Your ASA code 

Hi Mahesh,

 

Your ASA code  (asa847-k8.bin) is affected by this Bug, recommended release is 8.4(7.23) and later.

this bug is first fixed in 8.4(7.15).

 

Thanks,

Prashant Joshi

Community Member

 Hi Prashant, If i upgrade

 

Hi Prashant,

 

If i upgrade the ASA code to 8.4(7.23) need to know if it will change any config like

ACL,Natting etc?

Regards

MAhesh

Hall of Fame Super Silver

Hi Mahesh,Upgrading to an

Hi Mahesh,

Upgrading to an interim maintenance release from within the same minor release will not change any configuration (other than the boot image name, that is). 

Community Member

Many thanks Marvin.

Many thanks Marvin.

 

Regards

MAhesh

179
Views
0
Helpful
4
Replies
CreatePlease to create content