Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
443
Views
1
Helpful
2
Replies

Switching to fix the VAPT issue

Nisanth MS
Level 1
Level 1

‎05-21-2025 09:26 PM

How to solve this issue?...

 

Screenshot 2025-05-22 095227.pngScreenshot 2025-05-22 095244.png

Labels:
0 Helpful
2 Replies 2

Marco Rojas Abarca
Cisco Employee
Cisco Employee

‎10-20-2025 11:29 AM

Dear Nishant MS,

Is there a CVE number or a CDETS associated to this concern?

Sincerely,
Marco R.

0 Helpful

Jens Albrecht
Spotlight
Spotlight

‎10-20-2025 12:28 PM

Hello @Nisanth MS,

it is very easy for security teams to launch such requests but you might end up explaining them why they have to accept these issues.

Yes, the CUCM 15.x releases do not only support TLS v1.2 but also  v1.3 and Cisco released COP files for older versions that enable TLS enforcement. It is also possible to restrict SSH algorithms, e.g. by disabling legacy SHA-1 suites.

!!! BUT !!!

Doing this can easily break things so you need to carefully check all TLS flows and components. For example, disabling TLS 1.0/1.1 might affect older Cisco IP phones, Jabber builds, or CTI integrations.

Take a look at the following thread to get an idea what such changes might involve:

https://community.cisco.com/t5/unified-communications-infrastructure/tls-version-1-1-is-a-deprecated-protocol-vapt-in-cucm/td-p/5230403

HTH!

Customers Also Viewed These Support Documents