Forum Discussion

nolipineda

Altostratus

Jul 10, 2015

CVE-2015-1793

Hi, Does anyone know if F5 devices are affected by this OpenSSL vulnerability, CVE-2015-1793? Thanks!

Cirrostratus

Jul 10, 2015

The affected OpenSSL versions have been out less than a month:

https://www.openssl.org/news/openssl-1.0.2-notes.html

https://www.openssl.org/news/openssl-1.0.1-notes.html

I doubt any vendor has based their software off these version. Also, this really more of a client side vulnerability than server, so you'd have to trick the device in to opening a connection to a non-trusted site, which is not going to be easy.

In short, nothing to see here, move along...

Forum Discussion

CVE-2015-1793

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS