If the device is running Cisco IOS XE Software, the system banner displays Cisco IOS Software, Cisco IOS XE Software, or similar text.
To determine which Cisco IOS XE Software release is running on a device, administrators can log in to the device, use the show version command in the CLI, and then refer to the system banner that appears. Ip access-group 100 in Determining the Cisco IOS XE Software Release The following example shows the output of the show running-config | section interface GigabitEthernet0$ command for a router that has an affected configuration: Router# sh running-config | section interface GigabitEthernet0$ If either command is present and configured, the device has an affected configuration. To determine whether the Gigabit Ethernet Management interface configuration is affected, administrators can log in to the device and use the show running-config | section interface GigabitEthernet0$ command in the CLI to check for the presence of the ip access-group command or the ipv6 traffic-filter command.
This vulnerability was introduced in Cisco IOS XE Software Release 16.1.1.įor information about which software releases are vulnerable, see the Fixed Software section of this advisory.Īssessing the Gigabit Ethernet Management Interface This vulnerability affects Cisco devices that are running a vulnerable 16.x release of Cisco IOS XE Software and are configured with an access control list (ACL) on the Gigabit Ethernet Management interface.
0 kommentar(er)
