Restrict SSH access (TCP port 22) only to known, trusted management IP addresses. Do not leave SSH open to the entire subnet or the public internet.
: A flaw in how SSH messages are handled during the authentication phase. ssh20cisco125 vulnerability exclusive