A recent Cisco IOS / IOS-XE vulnerability exists in certain code trains on Cisco L3 devices. If the device is both:
- Running a vulnerable version of code, AND
- Using the phrase " ip helper-address" in the running-config,
Then it should be upgraded to a non-vulnerable IOS version.
I've created a Compliance Report that highlights all of my L3 devices that contain "ip helper-address" in their configs.
The report includes NodeName, NodeIpAddress and the lines/instances of " ip helper-address" in the config.
But it does NOT include the IOS or IOS-XE version of code, which is what I need to make this work.
Alternately, I might be able to get what I need by creating or modifying an Inventory Report, if I knew how to add my new Compliance Report to the Inventory Report as a column.
Can you help me accomplish this?
Or, is there already a Cisco IOS Vulnerability report that deals with this " ip helper-address" issue, which I can download and use? If so, what's it called, where can I get it?
Yours,
Rick Schroeder