Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
349
Views
0
Helpful
2
Replies

Latest Penetration testing, there are some vulnerabilities discovered

arumugasamy
Level 1
Level 1

‎05-14-2023 12:04 AM

In the latest Penetration testing, we have there are some vulnerabilities discovered on some IPT IPs. The CUCM and CUC running with version 11.5. How we can mitigate the vulnerabilities. Will they all be solved by upgrading to the 14.0 version?

1. Configure the affected services to drop support for weak cipher suites and enable support for stronger cipher suites. See the full report for detailed remediations.

2. Replace the affected certificates

3. Configure the affected services to support newer protocols. See the full report for detailed remediation information.

Above 3 are to be resolved.

Labels:
0 Helpful
2 Replies 2

Jonathan Schulenberg
Hall of Fame
Hall of Fame

‎05-14-2023 05:04 AM - edited ‎05-14-2023 05:05 AM

You will need to research the specific CVE and corresponding Cisco PSIRT to identify the fixed in version.
As for other three:

  • I suggest starting with the security guide. Again, it’s on you to qualify that nothing in the environment requires the older ciphers or TLS versions. Be careful - it’s very easy to break stuff here - especially if you have anything end of sale. Often times this requires a PCAP of the TLS handshake to investigate proactively.
  • Certificate renewals have been discussed at length on the community; please check the documentation (one of several guides on the topic) and previous threads. Be careful not to break your ITL trust though!
  • Not sure what you’re referencing here.
0 Helpful

arumugasamy
Level 1
Level 1
In response to Jonathan Schulenberg

‎05-14-2023 05:08 AM

Thank you so much.

Let me go through your document
0 Helpful
Customers Also Viewed These Support Documents