Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 

CVE-2014-0160

Does anyone know if Cisco has an answer for this on the Telepresence gear?

 

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0160

Looks like there might be an issue on the VCS Expressway even though the release notes for X8.1 say they moved from openssl to Ciscossl?

 

VCS

MCU's 

Endpoints

 

I ran a test and it came back positive for my VCSE as well my C90 and C60.

http://filippo.io/Heartbleed/

SR#629865095

Thanks

Jonathan

Everyone's tags (2)
2 REPLIES
Cisco Employee

You should refer to Cisco

You should refer to Cisco PSIRT for topics like this

 

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed

 

CiscoSSL is an Cisco enhanced version of OpenSSL.. so core openSSL stuff largely still applies

VIP Purple

There's some other posts abut

There's some other posts abut this in another thread: https://supportforums.cisco.com/discussion/12169491/critical-openssl-bug-vcs-and-others-cve-2014-0160

Wayne
--
Please remember to rate responses and to mark your question as answered if appropriate.

Wayne
--
Please remember to rate responses and to mark your question as answered if appropriate.
703
Views
0
Helpful
2
Replies
CreatePlease to create content