Guest

Preview Tool

Cisco Bug: CSCuw57406 - ASDM: Fix for CSCuq10801 causes regression of CSCun78551

Last Modified

May 29, 2018

Products (1)

  • Cisco Adaptive Security Device Manager

Known Affected Releases

7.5(1)

Description (partial)

Symptom:
This is a modification on the product to enhance the security posture and resiliency of the 
product.

In particular, we need to warn users, that pushing the changes ASDM proposes when 
clicking the Set ASDM Defined User Roles... button will enable all privilege level 5 
or higher users to access arbitrary files on the devices flash. This includes the 
<i>running-config</i> file in clear text, which may contain sensitive information such as 
pre-shared-keys in crypto maps.

This warning must include a recommendation to enable password encryption.

Conditions:
Devices managed via ASDM with ASDM Defined User Roles.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.