Cisco Security Breach
triangle
triangle

Hardware |

Cisco Issues a “Critical” Security Advisory for their Nexus 9K Series ACI Mode Switches with a CVSS Score of 9.8

40’ish security advisories in total

Please be aware that at least 40 security advisories have been issued for Nexus 9000 Series ACI Mode data center switches. 1 is “critical” with a CVSS score of 9.8 (out of 10) and can let an attacker secretly access system resources with the privileges of a root user.

Per Cisco: “The vulnerability is due to the presence of a default SSH key pair that is present in all devices. An attacker could exploit this vulnerability by opening an SSH connection via IPv6 to a targeted device using the extracted key materials. This vulnerability is only exploitable over IPv6. IPv4 is not vulnerable. “There is no workaround, however Cisco releases free software updates that address the vulnerability.”

2 Important Take-Aways:

A free software update is available regardless of contract status. This is actually true for all of Cisco’s products. All OEM’s are held to a higher standard regarding security. They are required to fix known security vulnerabilities for the protection of all businesses that have a web presence.

If you are renewing SMARTnet just for the sake of IOS updates and the hardware is not within its first 18 months since release. Let’s talk about alternatives.

Cisco tests their products at the expense of their customer’s production environments. Its always something. Without new features there would be no reason for customers to purchase new hardware, but how often are the new features really solving a problem that exists?

Furthermore, how often do the new solutions actually work or deliver the propositioned value? I know its fun to have the latest and greatest hardware, but I also know after 20 years of networking. Even in my own personal consumer purchases, that the euphoria of new is often short lived.

Have you ever wanted to use a product longer, or purchase a product that is no longer available? Of course we have. Older generation hardware exists in every network on this planet. Or, it will at some point.

Why run from it? Embrace it!


IT professional provides support on laptop

Have Hardware Questions? Contact Us!

We specialize in IT hardware strategies for both new and pre-owned equipment to deliver equivalent performance at up to 90% savings. Edgeium equipment goes through testing to ensure it will lend dependable durable performance for your network.

Contact

Related Insights

Two men in a server room, looking at computer screens

Let’s review your network together. Next