Navigate

Check: CASA-ND-001420

Cisco ASA NDM STIG: CASA-ND-001420 (in versions v1 r6 through v1 r1)

Title

The Cisco ASA must be running an operating system release that is currently supported by Cisco Systems. (Cat I impact)

Discussion

Network devices running an unsupported operating system lack current security fixes required to mitigate the risks associated with recent vulnerabilities.

Check Content

Verify the ASA is in compliance with this requirement by having the ASA administrator enter the following command. show version Verify the release is still supported by Cisco. All releases supported by Cisco can be found at the following URL: https://www.cisco.com/c/en/us/products/security/asa-firepower-services/eos-eol-notice-listing.html If the ASA is not running a supported release, this is a finding.

Fix Text

Upgrade the ASA to a supported release.

Additional Identifiers

Rule ID: SV-239944r879887_rule

Vulnerability ID: V-239944

Group Title: SRG-APP-000516-NDM-000351

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-000366	The organization implements the security configuration settings.
CCI-003376	The organization replaces information system components when support for the components is no longer available from the developer, vendor, or manufacturer.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
CM-6	Configuration Settings
SA-22	Unsupported System Components