Guest

Preview Tool

Cisco Bug: CSCze87143 - Removal of RC4 as a SSL Cipher

Last Modified

Jan 13, 2020

Products (31)

  • Cisco Firepower Management Center
  • Cisco FirePOWER Appliance 8260
  • Sourcefire Defense Center 1000 Chassis
  • Sourcefire 3D6500 Sensor
  • Cisco FirePOWER Appliance 8120
  • Cisco FirePOWER Appliance 8130
  • Cisco FirePOWER Appliance 8140
  • Cisco FirePOWER Appliance 8270
  • Cisco NGIPS Virtual Appliance
  • Cisco FirePOWER Appliance 8250
View all products in Bug Search Tool Login Required

Known Affected Releases

5.2.0.3

Description (partial)

Symptoms:
Cisco Firepower Management Center includes a version of OpenSSL that is affected by the vulnerabilities identified by the following Common
Vulnerability and Exposures (CVE) IDs:
 
CVE-2008-5161
 
This bug was opened to address the potential impact on this product. The product supports the Open Secure Sockets Layer (OpenSSL) Rivest Cipher 4
(RC4)
ciphers which are considered less secure than the other more modern encryption algorithms. The product needs to remove support for RC4 ciphers or
make that support configurable by the user. 

Conditions:
Devices running the Rivest Cipher 4 (RC4).
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.