Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1463
Views
0
Helpful
1
Replies

TLS Diffie-Hellman Key Exchange Logjam Vulnerability

Omar Khouli
Level 1
Level 1

‎06-23-2015 11:03 AM - edited ‎02-21-2020 05:30 AM

We have Cisco Security Manager 4.8 running on Windows Server 2008 R2, recently we have conducted a scan on the server, and the following vulnerability has been reported  "TLS Diffie-Hellman Key Exchange Logjam Vulnerability". Note that we have excluded weak ciphers !EXPORT from httpd.conf file and rerun scan but vulnerability still exists.

 

Is it related to OpenSSL version that comes integrated with CSM? How can this be mitigated?

 

 

0 Helpful
1 Reply 1

Richard Burts
Hall of Fame
Hall of Fame

‎07-16-2015 08:13 AM

I have recently run into what sounds like a similar problem on a different platform. In our case it seems to be an issue about using Diffie-Hellman group 2 which uses 1024 bits. I wonder if that is the case with your platform also.

 

HTH

 

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card