Skipping steps may result in , especially in the FEM (Forwarding Engine Manager) or the stacking controller.
| CVE | Description | Severity | Fixed in 3.6.x? | | :--- | :--- | :--- | :--- | | | “BENIGNCERTAIN” – SNMP remote code execution | Critical | No (requires SMU but not included in base 3.6.10) | | CVE-2017-6742 | HTTP DoS / file read | High | No | | CVE-2017-12235 | TCP stack DoS | High | No | | CVE-2018-0151 | IOS-XE auth bypass in web UI | Critical | No | | CVE-2018-0171 | Smart Install remote code execution | Critical | No (patched in 3.6.11E, not in .10) | | CVE-2019-1265 | HTTP arbitrary file read | Medium | No | cat3k-caa-universalk9.spa.03.06.10.e.152-2.e10.bin
If you are looking for the "proper piece" to download or verify, always check the Cisco Software Central to ensure the MD5 or SHA512 checksum matches the file you have. This prevents system crashes or security vulnerabilities caused by corrupted or tampered images. Skipping steps may result in , especially in
: Utilizing Flexible NetFlow (FNF) to identify and prioritize business-critical traffic. ⚡ Resiliency Skipping steps may result in