Guest

Preview Tool

Cisco Bug: CSCtd17048 - PSIRT Issue: SSL protocol has vulnerabilities, upgrade OpenSSL in ISE

Last Modified

Aug 06, 2018

Products (1)

  • Cisco Unified Contact Center Enterprise

Known Affected Releases

2.0(0) 7.0(0) 7.1(1) 7.2(1) 7.5(1) 8.0(1)

Description (partial)

Symptom:
SSL protocol vulnerabilities in Internet Script Editor

Conditions:
An industry-wide vulnerability exists in the Transport Layer Security (TLS) protocol that could impact any product that uses any version of TLS  and SSL. The vulnerability exists in how the protocol handles session renegotiation and exposes users to a potential man-in-the-middle attack.

This advisory is posted at http://www.cisco.com/warp/public/707/cisco-sa-20091109-tls.shtml
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.