09-18-2023 05:42 AM
Tenable says Switches and WLCs are vulnerable for CVE-2004-2761.SSL Certificate Signed Using Weak Hashing Algorithm.
Please help with fix
09-18-2023 08:08 AM - edited 09-18-2023 08:09 AM
what switch model and WLC example : what code they running ?
the CVE might be old
MD5 in the signature algorithm of an X.509 certificate -
Look at the bug : (see some workaround suggested way back 2009)
https://bst.cisco.com/bugsearch/bug/CSCvn60539
also look at below thread :
https://community.cisco.com/t5/network-security/https-scan-reveals/td-p/1628713
BB
***** Rate All Helpful Responses *****
How to Ask The Cisco Community for Help
09-18-2023 04:07 PM
@rahul kale wrote:CVE-2004-2761
I have purposely highlighted the CVE number to demonstrate that this CVE was discovered back in 2004.
If there are equipment(s) that were purchased back then, there is no other fix other than a physical replacement.
09-30-2023 04:02 AM
I have same problem with Switch C9300-24UX-E is vulnerable for CVE-2004-2761.SSL Certificate Signed Using Weak Hashing Algorithm.
Please Suggest
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
