Just wanted to update the thread, I've applied the 1.4.20 firmware to treat these two vulnerabilities, and I'm confirming that new OpenVPN certs created after that update are signed using md5WithRSAEncryption , not the sha256WithRSAEncryption used by...

I do have an active support contract, and I think (but not certain) in this circumstance one is needed to open a new case. I think it's worth a try to start the process at https://mycase.cloudapps.cisco.com/case?referring_site=support_mm and see what...

Quoting the SMB Network Engineer who worked with me: "I’m told we’re targeting a September release, although that can change. And yes, to get a copy of the beta, they would need to open a case. It would get escalated to me or someone else on my team,...

I opened a case and had to sign a participation form for the beta program. It seemed to help that I mentioned the bug report # above.

Confirming I could connect using Windows and Android OpenVPN clients using certs generated by the beta provided by Cisco, which are (automatically) signed with SHA265 rather than MD5.