Submit a ticketCall us

Solarwinds & Cisco Live! Barcelona
Join us from the 29th of January to the 2nd of February at Cisco Live 2018 in Barcelona, where we will continue to show how monitoring the network with SolarWinds will keep you ahead of the game. At our booth (WEP 1A), we will demonstrate how SolarWinds network solutions can help. As a bonus, we are also hosting a pre-event webinar - Blame the Network, Hybrid IT Edition with our SolarWinds Head Geek™, Patrick Hubbard on January 24th - GMT (UTC+0): 10:00 a.m. to 11:00 a.m. There's still time to RSVP.

Home > Success Center > Network Configuration Manager (NCM) > Vulnerability scanning on Cisco devices

Vulnerability scanning on Cisco devices

Table of contents

Updated February 9, 2017

Overview

Some Cisco devices are showing a potential vulnerability. This particular vulnerability does not affect their specific device type or model.

Environment

NCM version 7.5 and later

Detail

NCM searches vulnerabilities related only to Cisco IOS and Cisco ASA. 
NCM is looking for:
cpe:/o:cisco:ios:
cpe:/a:cisco:adaptive_security_appliance:
cpe:/o:cisco:adaptive_security_appliance:
cpe:/h:cisco:adaptive_security_appliance:
cpe:/a:cisco:adaptive_security_appliance_software:
cpe:/o:cisco:adaptive_security_appliance_software:
cpe:/h:cisco:adaptive_security_appliance_software:

 

Only announcements with similar CPE patterns will be taken into account.
CVE-2014-7998 announcement matches to common Cisco IOS cpe:/o:cisco:ios: pattern.

That is the reason you would get "potential” vulnerability for Cisco 2960 switch. 
NCM reports these “potential” vulnerabilities, and then the user should review and ignore the ones which are not applicable for a particular device.

 

 

 

Last modified

Tags

Classifications

Public