Forum Discussion
Chris_Grant
Aug 01, 2016Employee
You should ideally always be on the latest hotfix. Having said that 11.6.0 HF5 is only vulnerable to the slow loris attack on the management plane. It is not vulnerable to either of the other two CVEs. Make sure that your management interface is not accessible from outside your organization, and ideally not accessible outside a dedicated management network. Upgrading to the latest hotfix (or even the latest code revision) will not change this.
11.6.0 HF5 is not vulnerable to CVE-2012-0814 or CVE-2008-5161.