Navigate

Check: CASA-ND-001420

Cisco ASA NDM STIG: CASA-ND-001420 (in versions v2 r2 through v1 r1)

Title

The Cisco ASA must be running an operating system release that is currently supported by Cisco Systems. (Cat I impact)

Discussion

Network devices running an unsupported operating system lack current security fixes required to mitigate the risks associated with recent vulnerabilities.

Check Content

Verify the ASA is in compliance with this requirement by having the ASA administrator enter the following command. show version Verify the release is still supported by Cisco. All releases supported by Cisco can be found at the following URL: https://www.cisco.com/c/en/us/products/security/asa-firepower-services/eos-eol-notice-listing.html If the ASA is not running a supported release, this is a finding.

Fix Text

Upgrade the ASA to a supported release.

Additional Identifiers

Rule ID: SV-239944r961863_rule

Vulnerability ID: V-239944

Group Title: SRG-APP-000516-NDM-000351

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.

Number	Definition
CCI-003376	Replace system components when support for the components is no longer available from the developer, vendor, or manufacturer.

Controls

Controls tied to check. These are derived from the CCIs shown above.

Number	Title
SA-22	Unsupported System Components