Meraki

Community

IOS and IOS-XE SNMP vulnerability

cok-cthompson
Just browsing
‎Oct 16 2025 10:15 AM
‎Oct 16 2025 10:15 AM

IOS and IOS-XE SNMP vulnerability

Anyone know if this vulnerability in any way impacts Meraki devices not running IOS\IOS-XE code?
Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability

 

Can't seem to find any documentation on the Meraki side to support this as being a vulnerability for devices not running IOS or IOS-XE, even though there is this statement in the announcement:

"For customers using Meraki cloud-managed switches: If any devices in your dashboard organization are running an affected software release, contact the Meraki support team to apply the recommended mitigation. Using this configuration is recommended until fixed software becomes available."

Assuming the above is for Cloud Managed IOS/IOS-XE devices.

 

Thanks in advance

Labels:
0 Kudos
4 Replies 4
alemabrahao
Kind of a big deal
Kind of a big deal
‎Oct 16 2025 10:18 AM
‎Oct 16 2025 10:18 AM

You can check it here.

 

https://sec.cloudapps.cisco.com/security/center/softwarechecker.x

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
Mloraditch
Kind of a big deal
Kind of a big deal
‎Oct 16 2025 10:41 AM
‎Oct 16 2025 10:41 AM

MS switches run completely different software than IOS Based. The tool @alemabrahao listed does not cover this type of code.

I think I have occasionally seen Meraki listed on Cisco CVE announcements when it might originate from open source code that many platforms share.

Regardless this vulnerability doesn't affect MS code as published. 

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
0 Kudos
RaphaelL
Kind of a big deal
Kind of a big deal
‎Oct 16 2025 11:24 AM
‎Oct 16 2025 11:24 AM

From Support earlier this week : 

 

Thank you for your time on the call today. I would like to inform you that an internal case has been opened with our backend team. Their investigation has confirmed that not all firmware versions are impacted by this issue. Please find the details below: Impacted Releases (cloud-managed switches): All available Cloud Native IOS XE 17.15 releases: 17.15.1, 17.15.2, 17.15.3, 17.15.3.1, 17.15.4 Not Impacted: CS17 or earlier CS releases MS releases Cloud Native IOS XE 17.18.1 Based on the above, your switch network is currently running MS firmware 17.1.4, and therefore is not impacted by this issue.

In response to RaphaelL
cok-cthompson
Just browsing
‎Oct 16 2025 11:45 AM
‎Oct 16 2025 11:45 AM

Thanks so much RaphaelL. All but one of my switches are running MS firmware. However, I have one C9300X that's on CS 17.2.1.1
I'll have to open a ticket to confirm, though seems like perhaps I'm good since it's on the CS17 major release.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2026 Cisco Systems, Inc.