Guest

Preview Tool

Cisco Bug: CSCvh68002 - Upgrade OpenSSL 1.0.2d to avoid known CVEs.

Last Modified

Feb 26, 2019

Products (1)

  • Cisco Small Business RV Series Routers

Known Affected Releases

1.0.3.8

Description (partial)

Symptom:
Cisco Small Business RV130 Series VPN Routers includes a version of the OpenSSL
Protocol (version 1.0.2d) that is affected by the vulnerabilities identified by the 
following Common Vulnerability and Exposures (CVE) IDs: 

CVE-2009-1234, CVE-2017-3738, CVE-2016-0701, CVE-2017-3736, CVE-2017-3732, CVE-2015-3193, 
CVE-2017-3737, CVE-2017-3735, CVE-2017-3731, CVE-2016-8610, CVE-2016-6306, CVE-2016-6304, 
CVE-2016-6303, CVE-2016-6302, CVE-2016-2842, CVE-2016-0799, CVE-2016-2183, CVE-2016-2182, 
CVE-2016-2181, CVE-2016-2180, CVE-2016-2179, CVE-2016-2178, CVE-2016-2177, CVE-2016-2176, 
CVE-2016-2109, CVE-2016-2107, CVE-2013-0169, CVE-2016-2106, CVE-2016-2105, CVE-2016-0800, 
CVE-2016-0798, CVE-2016-0797, CVE-2016-0705, CVE-2016-0702, CVE-2015-3197, CVE-2015-3195, 
CVE-2015-3194, CVE-2015-1794

This bug was opened to address the potential impact on this product.

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.