0 Replies Latest reply on Sep 28, 2017 1:34 PM by rschroeder

    How does one add IOS version to a Compliance Report?  Or incorporate a Compliance Report into an Inventory report?

    rschroeder

      A recent Cisco IOS / IOS-XE vulnerability exists in certain code trains on Cisco L3 devices.  If the device is both:

      1. Running a vulnerable version of code, AND
      2. Using the phrase " ip helper-address" in the running-config,

       

      Then it should be upgraded to a non-vulnerable IOS version.

       

      I've created a Compliance Report that highlights all of my L3 devices that contain  "ip helper-address" in their configs.

       

      The report includes NodeName, NodeIpAddress and the lines/instances of " ip helper-address" in the config.

       

      But it does NOT include the IOS or IOS-XE version of code, which is what I need to make this work.

       

       

      Alternately, I might be able to get what I need by creating or modifying an Inventory Report, if I knew how to add my new Compliance Report to the Inventory Report as a column.

       

       

      Can you help me accomplish this?

       

       

      Or, is there already a Cisco IOS Vulnerability report that deals with this " ip helper-address" issue, which I can download and use?  If so, what's it called, where can I get it?

       

       

      Yours,

       

      Rick Schroeder