cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
450
Views
0
Helpful
2
Replies

Nexus 1000v OpenSSL version unsupported

tmoore
Level 1
Level 1

Our security scanner reports that the 1000v switch is running a unsupported openSSL version.  I upgraded the switch to 5.2(1)SV3(2.8) from 5.2(1)SV3(2.1) per bugID CSCvb48570.

1    5.2(1)SV3(2.8)      0.0
2    5.2(1)SV3(2.8)      0.0
3    5.2(1)SV3(2.8)      VMware ESXi 6.0.0 Releasebuild-5050593 (6.0)
4    5.2(1)SV3(2.8)      VMware ESXi 6.0.0 Releasebuild-5050593 (6.0)
5    5.2(1)SV3(2.8)      VMware ESXi 6.0.0 Releasebuild-5050593 (6.0)
6    5.2(1)SV3(2.8)      VMware ESXi 6.0.0 Releasebuild-5050593 (6.0)

But the scanner is still reporting that the switch is vulnerable after the upgrade.  Reports that it is running version 1.0.1t and it needs to be running version 1.0.1u or higher.  Is there a way to upgrade the openSSL version?

2 Replies 2

j4m3swatson
Level 1
Level 1

Hi - 

Did you manage to get any information around this? I have a similar issue. 

Regards, 

James

Ended up upgrading to  5.2(1)SV3(3.1) which fixed the issue, now running version 1.0.1u. But still have an issue with the scan tool reporting that the device should not be running OpenSSL version 1.0.1, that should be upgraded to version 1.0.2 or 1.1.0. 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco