Meraki

Community

Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Denial of Service Vulnerabilities

PhilipDAth
Kind of a big deal
Kind of a big deal
‎Oct 2 2024 11:54 PM
‎Oct 2 2024 11:54 PM

Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Denial of Service Vulnerabilities

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-meraki-mx-vpn...

 

Summary
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition to the AnyConnect VPN service on an affected device.

 

For more information about these vulnerabilities, see the Details section of this advisory.

 

Cisco Meraki has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

4 Replies 4
Sam_Adams
Comes here often
‎Oct 3 2024 5:24 AM
‎Oct 3 2024 5:24 AM

Do you know which release fixes this for the MX64s? The MX64s cannot run on the 18.20X Firmware versions and are stuck on 18.10X.

0 Kudos
In response to Sam_Adams
Mloraditch
Kind of a big deal
‎Oct 3 2024 11:16 AM
‎Oct 3 2024 11:16 AM

18.211.2 seems to be linked to 18.107.10 for common fixes so I would suspect that but hopefully someone can clarify.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
0 Kudos
In response to Sam_Adams
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Oct 3 2024 1:20 PM
‎Oct 3 2024 1:20 PM

I have sent an inquiry to someone more knowledgeable to see if I can get a definitive answer.

In response to Sam_Adams
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Oct 3 2024 8:09 PM
‎Oct 3 2024 8:09 PM

It looks like there will be an MX64 firmware with a fix, but that firmware has not been released yet.

li.common.scroll-to.top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
© 2025 Cisco Systems, Inc.