Text only | Text with Images

Networking-Forums.com

Professional Discussions => Vendor Advisories => Topic started by: Netwörkheäd on May 17, 2021, 06:27:14 PM

Title: Cisco Security Advisory - Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021
Post by: Netwörkheäd on May 17, 2021, 06:27:14 PM
Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021

On March 25, 2021, the OpenSSL Project released a security advisory, OpenSSL Security Advisory [25 March 2021], that disclosed two vulnerabilities.


Exploitation of these vulnerabilities could allow an attacker to use a valid non-certificate authority (CA) certificate to act as a CA and sign a certificate for an arbitrary organization, user or device, or to cause a denial of service (DoS) condition.


This advisory will be updated as additional information becomes available.


This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd



     
         
Security Impact Rating:  High
   
   
       
CVE: CVE-2021-3449,CVE-2021-3450
Source: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021 (https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Multiple%20Vulnerabilities%20in%20OpenSSL%20Affecting%20Cisco%20Products:%20March%202021&vs_k=1)
Text only | Text with Images