Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
758
Views
0
Helpful
3
Replies

Need fix for CVE-2004-2761

rahul kale
Beginner
Beginner

‎09-18-2023 05:42 AM

Tenable says Switches and WLCs are vulnerable for CVE-2004-2761.SSL Certificate Signed Using Weak Hashing Algorithm.

Please help with fix

1 person had this problem
Labels:
0 Helpful
3 Replies 3

balaji.bandi
VIP
VIP

‎09-18-2023 08:08 AM - edited ‎09-18-2023 08:09 AM

what switch model and WLC example : what code they running ?

the CVE might be old

MD5 in the signature algorithm of an X.509 certificate  -

Look at the bug : (see some workaround suggested way back 2009)

https://bst.cisco.com/bugsearch/bug/CSCvn60539

also look at below thread :

https://community.cisco.com/t5/network-security/https-scan-reveals/td-p/1628713

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame

‎09-18-2023 04:07 PM

@rahul kale wrote:
CVE-2004-2761

I have purposely highlighted the CVE number to demonstrate that this CVE was discovered back in 2004.  

If there are equipment(s) that were purchased back then, there is no other fix other than a physical replacement.  

0 Helpful

krishna babariya
Beginner
Beginner

‎09-30-2023 04:02 AM

I have same problem with Switch C9300-24UX-E is vulnerable for CVE-2004-2761.SSL Certificate Signed Using Weak Hashing Algorithm.

Please Suggest

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents