Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
463
Views
0
Helpful
1
Replies

.. ASA5585-SSP-20 with Software Version 9.2(4)14 .......ASA BEAST Vulnerability Solutions

mohamedrahmancisco
Level 1
Level 1

‎11-07-2016 11:32 AM

My Current configuration is as below ( Not sure if my version is affected with "ASA BEAST Vulnerability Solutions with TLS 1.0 Settings "

and do we need to upgrade to next version to fix these bug.

current configuration# ASA5585-SSP-20 with Software Version 9.2(4)14 support TLS1.1 and TLS1.2

Below fix is not sure about these version.

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCts83720.

BUg # CSCts83720   for upgrading TLS1.0 to more higher versions of TLS 1.1. and 1.2 .

Labels:
0 Helpful
1 Reply 1

JP Miranda Z
Cisco Employee
Cisco Employee

‎11-07-2016 12:46 PM

Hi mohamedrahmancisco,

The Vulnerability will be fixed as soon as you allow TLS1.1 or TLS1.2, in order to support those the ASA needs to be on version 9.3.2 or higher (TLS1.1/1.2 was introduced on 9.3.2).

***Keep in mind if you have AnyConnect clients, the only client that connects with TLS1.1 or 1.2 is AnyConnect 4.x***

Hope this info helps!!

Rate if helps you!! 

-JP-

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents