Guest

Preview Tool

Cisco Bug: CSCuo21486 - TelePresence ISDN GW is vulnerable to CVE-2014-0160 - aka Heartbleed

Last Modified

Dec 19, 2019

Products (1)

  • Cisco TelePresence ISDN Gateway

Known Affected Releases

2.2(1.79) 2.2(1.92)

Description (partial)

Symptom:
The following Cisco products:

Cisco TelePresence ISDN GW 3241
Cisco TelePresence ISDN GW MSE 8321

include a version of openssl that is affected by the vulnerability identified by the Common Vulnerability and Exposures (CVE) ID CVE-2014-0160.

This bug has been opened to address the potential impact on this product.

Conditions:
Vulnerable s/w releases: 2.2(1.79)P and 2.2(1.92)P; 2.2(1.79)N.

Not vulnerable s/w releases: 2.1(1.56)P, 2.1(1.56)N, 2.1(1.49)P, 2.1(1.43)P, 2.1(1.22)P, 2.0(1.51)P, 2.0(1.49)P, 2.0(1.40)P, 2.0(1.35)P, 1.5(1.16)P, 1.4(1.9)P, 1.4(1.4)P and 1.4(1.1)P; 2.1(1.49)N, 2.1(1.43)N, 2.1(1.22)N, 2.0(1.51)N, 2.0(1.49)N, 2.0(1.40)N, 2.0(1.35)N, 1.5(1.16)N, 1.4(1.9)N, 1.4(1.4)N, 1.4(1.1)N, 1.3(1.14), 1.3(1.13), 1.3(1.1), 1.2(1.23), 1.2(1.13), 1.2(1), 1.1(1.7) and 1.1(1).

First release with fix: 2.2(1.94)P for Cisco TelePresence ISDN GW 3241 and Cisco TelePresence ISDN GW MSE 8321 (released on 1st of May 2014). 

Note that no s/w fixes will be published for Tandberg Codian ISDN Gateway 3210/3220/3220 and Tandberg Codian ISDN Gateway 8320 blade. These product lines are EOS/EOL : http://www.cisco.com/c/en/us/products/collateral/collaboration-endpoints/tandberg-codian-isdn-gateway-3210-3220-3240/end_of_life_notice_c51-687398.html
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.