Cisco Bug: CSCup28017 - Multiple Vulnerabilities in OpenSSL - June 2014
Dec 21, 2018
- Cisco CSS 11000 Series Content Services Switches
Known Affected Releases
Symptom: The following Cisco products: Cisco CSS 11500 Series Content Services Switch with SSL Module Include a version of openssl that is affected by the vulnerabilities identified by the Common Vulnerability and Exposures (CVE) IDs: CVE-2014-0224 - SSL/TLS MITM vulnerability This bug has been opened to address the potential impact on this product. Conditions: Cisco CSS 11500 that has been configured for backend SSL initiation so the CSS 11500 SSL Module is acting as the client. In this configuration the CSS11500 SSL Module may result in the vulnerability being exploitable by an attacker.
Related Community Discussions
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases