Why are C25 TCP ports 20506 and 60606 showing up as open on a security scan?
When running a security scan with Nexpose vulnerability assessment?
Nexpose security application
Version 9.15.xx and 9.21.01
TCP port 20506 used by a management process on the controller and used by the physical esa port that is set for management. This port should be run over a secure dedicated management VLAN. There is a change being implemented in version 9.21.02 that will resolve that.
TCP port 60606 has not shown up in previous scanning utilities. The protocol run over this port is used for client mobility management and is purely proprietary. The port may be reported as "open", but we do not believe there is a vulnerability.