Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
908
Views
0
Helpful
2
Replies

SSL Certificate vulnerabilities

DuBu
Level 1
Level 1

ā€Ž02-08-2023 11:46 PM

Hi 

During one of the vulnerability scan, our security team came up with the below vulnerabilities for our UC Servers (CUCM/CUC). Can someone help understand about these vulnerabilities and the possible remediation for them

SSL Self-Signed Certificate
SSL Certificate Cannot Be Trusted
SSL Null Cipher Suites Supported
SSH Server CBC Mode Ciphers Enabled -- CVE-2008-5161;http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5161

 

0 Helpful
2 Replies 2

Jonathan Schulenberg
Hall of Fame
Hall of Fame

ā€Ž02-09-2023 02:20 AM

First search result: CSCva42141 Disable CBC Ciphers in SSHD.. Upgrade to a fixed-in release or contact TAC for a workaround. 

0 Helpful

DuBu
Level 1
Level 1
In response to Jonathan Schulenberg

ā€Ž02-09-2023 03:45 AM

Thanks Jonathan, We are on 12.5 SU6 , for  CSCva42141 Disable CBC Ciphers in SSHD. looks like the fix is present in ES release but as we plan to go to 14 soon i guess that should not be a problem but shall check with TAC

Any idea on the others in the list?

Thanks

 

0 Helpful
Customers Also Viewed These Support Documents