Guest

Preview Tool

Cisco Bug: CSCur49880 - ASDM: TLS - SSLv3 keywords deprecated

Last Modified

Sep 17, 2019

Products (1)

  • Cisco Adaptive Security Device Manager

Known Affected Releases

7.3(2)

Description (partial)

Symptom:
Support for the SSLv3 protocol on the Cisco Adaptive Security Device Manager has been removed due to the security concerns, including the POODLE vulnerability released on 2014.

New Cisco Adaptive Security Device Manager releases implement the following changes:

1) the default for the client/server SSL version is changed from SSLv3 to TLSv1
2) the SSLv3 keywords (ssl, sslv3-only and any) have been deprecated, and a warning will be shown if there is an attempt to configure either one of them .

Conditions:
Default configuration
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.