Cisco Bug: CSCun38113 - CUCDM: SSL configuration supports HTTP compression (BREACH attack)
Aug 06, 2018
- Cisco Hosted Collaboration Solution (HCS)
Known Affected Releases
Symptom: During testing of Cisco Unified Communication Device Manager it has been found that it was suceptible to be affected by the Browser Reconnaissance and Exfiltration via Adaptive Compression of Hypertext (BREACH) attack. Conditions: Running a version of CUCDM prior to this bug-fix.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases