Our security team Run a NASSES VUE Reports in Network and collected a several Vulnerability & asking us for vulnerabilities about CUCM.
We are supporting CUCM 11.5 where below mentioned vulnerabilities are found
SSL Medium Strength Cipher Suites Supported
SSL Certificate Cannot Be Trusted
SSL Self-Signed Certificate
SSH Weak Algorithms Supported
SSH Server CBC Mode Ciphers Enabled
How we can resolve this..do we need to contact TAC...as there was no VUE ID mentioned in the generated report
