[c-nsp] How secure ASR management interface is?
Alex K.
nsp.lists at gmail.com
Sat Apr 20 09:49:50 EDT 2019
Hello Dave,
Thank you.
Sure, it isn't *really* separated. After all, RPs' CPU connected to both
(management interface and router forwarding matrix). It's really software
imposed separation.
בתאריך שבת, 20 באפר' 2019, 16:04, מאת Dave Cardwell <
dave.cardwell1 at gmail.com>:
>
> On Sat, 20 Apr 2019, 12:46 Alex K., <nsp.lists at gmail.com> wrote:
>
>>
>> An interesting question I got from one of my customers - how secure Cisco
>> ASR management interface is? Meaning, how really *separate* it is.
>>
>>
> Its not the vector you describe below but the linked CVE relates to the
> separation or lack thereof (see the workaround).
>
>
> https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190417-asr9k-exr
>
More information about the cisco-nsp
mailing list