04-08-2014 07:02 PM - edited 03-18-2019 02:51 AM
Does anyone know if Cisco has an answer for this on the Telepresence gear?
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0160
Looks like there might be an issue on the VCS Expressway even though the release notes for X8.1 say they moved from openssl to Ciscossl?
VCS
MCU's
Endpoints
I ran a test and it came back positive for my VCSE as well my C90 and C60.
http://filippo.io/Heartbleed/
SR#629865095
Thanks
Jonathan
04-08-2014 09:09 PM
You should refer to Cisco PSIRT for topics like this
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed
CiscoSSL is an Cisco enhanced version of OpenSSL.. so core openSSL stuff largely still applies
04-09-2014 05:47 PM
There's some other posts abut this in another thread: https://supportforums.cisco.com/discussion/12169491/critical-openssl-bug-vcs-and-others-cve-2014-0160
Wayne--Please remember to rate responses and to mark your question as answered if appropriate.
Please remember to mark helpful responses and to set your question as answered if appropriate.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
