Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
298
Views
2
Helpful
3
Replies

NX-OS OpenSSL version matrix

Richard-Strong
Level 1
Level 1

‎05-23-2024 07:09 AM

does anyone know if there is a matrix showing which version of openSSL is used by each version of NX-OS?
I'm specifically looking for versions for nexus 7700, I am planning to upgrade the NX-OS

Thank you.

Labels:
0 Helpful
3 Replies 3

marce1000
VIP
VIP

‎05-23-2024 10:14 AM

 

            - I don't think that exists ; you may for instance get insights with :
                       %  nmap --script ssl-enum-ciphers -p 443  your-nexus-device

                                       (before and after upgrades)

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

Richard-Strong
Level 1
Level 1
In response to marce1000

‎05-23-2024 10:35 AM

thanks for that. I already know there is a vulnerability and I'm in the process of choosing the best upgrade version. looking at the  Cisco Nexus 7000 ISSU and Cold Boot Support Matrix,  from my current version 8.3(1)  I thought 8.4. 6 was recommended but today it looks like  8.4.8 is recommended.   I find nothing about openSSL vulnerabilities. for 8.4. 6 or 8.   Do I just upgrade to the * recommended code and cross my fingers?  

RichardStrong_0-1716485497568.png       Thank you for responding 

 

    https://www.cisco.com/c/dam/en/us/td/docs/dcn/tools/nexus-7k-issu-matrix/index.html

0 Helpful

marce1000
VIP
VIP
In response to Richard-Strong

‎05-23-2024 11:03 AM

 

                    >...Do I just upgrade to the * recommended code and cross my fingers?  
  -  Essentially there are no other  alternatives ; besides then using vulnerability scanners  (e.g.) and check for openssl vulnerabilities.
     And if an important security issue is found in an advisory release  then contact TAC

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card