Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: November 2016

cisco-sa-20161114-openssl · Medium · Published · Updated

On November 10, 2016, the OpenSSL Software Foundation released a security advisory that describes three vulnerabilities. Of these vulnerabilities, the OpenSSL Software Foundation classifies one as “Critical Severity,” one as “Moderate Severity,” and one as “Low Severity.” Two of the vulnerabilities affect only recent OpenSSL versions in the 1.1.0 release series. The remaining Low Severity vulnerability affects OpenSSL versions in the 1.0.2 and 1.1.0 release series. This advisory will be updated as additional information becomes available. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161114-openssl

Cisco advisory · CSAF JSON

Workarounds

Any workarounds that address one or more of these vulnerabilities will be documented in the Cisco bugs, which are accessible from the Cisco Bug Search Tool ["https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID"], for each affected product.

CVEsCVE-2016-7053, CVE-2016-7054, CVE-2016-7055
Cisco Bug IDsCSCvc08529, CSCvc08539, CSCvc08542, CSCvc08554, CSCvc08555, CSCvc08559, CSCvc08567, CSCvc08570, CSCvc08607, CSCvc08612, CSCvc08614, CSCvc08623, CSCvc08627, CSCvc08628, CSCvc08629, CSCvc08648, CSCvc08657, CSCvc08663, CSCvc08680, CSCvc08689, CSCvc08697, CSCvc08700, CSCvc08715, CSCvc08749, CSCvc08750, CSCvc08759, CSCvc08779, CSCvc08781, CSCvc08820, CSCvc08828, CSCvc13497
CVSS ScoreBase NA
Product Names From Source
Cisco IOS XR Software, Cisco ONS 15454 System Software, Cisco Wide Area Application Services (WAAS), Cisco Wireless LAN Controller (WLC), Cisco Unified Contact Center Enterprise, Cisco Unity Connection, Cisco TelePresence, Cisco Security Manager, Cisco Video Surveillance Media Server Software, Cisco Network Analysis Module (NAM) Software, Cisco Identity Services Engine Software, Cisco Content Security Management Appliance (SMA), Cisco Connected Grid Network Management System (CG-NMS), Cisco Jabber IM for Android, Cisco WebEx Meetings Server, Cisco Prime Network Registrar, Cisco UCS Director, Cisco Application Policy Infrastructure Controller (APIC), Cisco Plug-in for OpenFlow, Cisco Prime IP Express, Cisco Telepresence Conductor, Cisco Unified Workforce Optimization Quality Management, Cisco Firepower System Software, Cisco Jabber Software Development Kit, Cisco Jabber for Mac, Cisco Unified Attendant Console, Cisco Videoscape Control Suite, Cisco Secure Email and Web Manager

Related Products

Product CVE Evidence
Plug-in for OpenFlow CVE-2016-7055 Cisco OpenVuln
Plug-in for OpenFlow CVE-2016-7054 Cisco OpenVuln
Plug-in for OpenFlow CVE-2016-7053 Cisco OpenVuln
Cisco Wireless LAN Controller (WLC) CVE-2016-7055 Cisco OpenVuln
Cisco Wireless LAN Controller (WLC) CVE-2016-7054 Cisco OpenVuln
Cisco Wireless LAN Controller (WLC) CVE-2016-7053 Cisco OpenVuln
Cisco Wide Area Application Services (WAAS) CVE-2016-7055 Cisco OpenVuln
Cisco Wide Area Application Services (WAAS) CVE-2016-7054 Cisco OpenVuln
Cisco Wide Area Application Services (WAAS) CVE-2016-7053 Cisco OpenVuln
Cisco Webex Meetings CVE-2016-7055 Cisco OpenVuln
Cisco Webex Meetings CVE-2016-7054 Cisco OpenVuln
Cisco Webex Meetings CVE-2016-7053 Cisco OpenVuln
Cisco WebEx Meetings Server CVE-2016-7055 Cisco OpenVuln
Cisco WebEx Meetings Server CVE-2016-7054 Cisco OpenVuln
Cisco WebEx Meetings Server CVE-2016-7053 Cisco OpenVuln
Cisco Videoscape Control Suite CVE-2016-7055 Cisco OpenVuln
Cisco Videoscape Control Suite CVE-2016-7054 Cisco OpenVuln
Cisco Videoscape Control Suite CVE-2016-7053 Cisco OpenVuln
Cisco Video Surveillance Media Server Software CVE-2016-7055 Cisco OpenVuln
Cisco Video Surveillance Media Server Software CVE-2016-7054 Cisco OpenVuln
Cisco Video Surveillance Media Server Software CVE-2016-7053 Cisco OpenVuln
Cisco Unity Connection CVE-2016-7055 Cisco OpenVuln
Cisco Unity Connection CVE-2016-7054 Cisco OpenVuln
Cisco Unity Connection CVE-2016-7053 Cisco OpenVuln
Cisco Unity CVE-2016-7055 Cisco OpenVuln
Cisco Unity CVE-2016-7054 Cisco OpenVuln
Cisco Unity CVE-2016-7053 Cisco OpenVuln
Cisco Unified Workforce Optimization Quality Management CVE-2016-7055 Cisco OpenVuln
Cisco Unified Workforce Optimization Quality Management CVE-2016-7054 Cisco OpenVuln
Cisco Unified Workforce Optimization Quality Management CVE-2016-7053 Cisco OpenVuln
Cisco Unified Contact Center Enterprise CVE-2016-7055 Cisco OpenVuln
Cisco Unified Contact Center Enterprise CVE-2016-7054 Cisco OpenVuln
Cisco Unified Contact Center Enterprise CVE-2016-7053 Cisco OpenVuln
Cisco Unified Contact Center CVE-2016-7055 Cisco OpenVuln
Cisco Unified Contact Center CVE-2016-7054 Cisco OpenVuln
Cisco Unified Contact Center CVE-2016-7053 Cisco OpenVuln
Cisco Unified Attendant Console CVE-2016-7055 Cisco OpenVuln
Cisco Unified Attendant Console CVE-2016-7054 Cisco OpenVuln
Cisco Unified Attendant Console CVE-2016-7053 Cisco OpenVuln
Cisco UCS Director CVE-2016-7055 Cisco OpenVuln
Cisco UCS Director CVE-2016-7054 Cisco OpenVuln
Cisco UCS Director CVE-2016-7053 Cisco OpenVuln
Cisco Telepresence Conductor CVE-2016-7055 Cisco OpenVuln
Cisco Telepresence Conductor CVE-2016-7054 Cisco OpenVuln
Cisco Telepresence Conductor CVE-2016-7053 Cisco OpenVuln
Cisco TelePresence CVE-2016-7055 Cisco OpenVuln
Cisco TelePresence CVE-2016-7054 Cisco OpenVuln
Cisco TelePresence CVE-2016-7053 Cisco OpenVuln
Cisco Security Manager CVE-2016-7055 Cisco OpenVuln
Cisco Security Manager CVE-2016-7054 Cisco OpenVuln
Cisco Security Manager CVE-2016-7053 Cisco OpenVuln
Cisco Secure Email and Web Manager CVE-2016-7055 Cisco OpenVuln
Cisco Secure Email and Web Manager CVE-2016-7054 Cisco OpenVuln
Cisco Secure Email and Web Manager CVE-2016-7053 Cisco OpenVuln
Cisco Secure Email CVE-2016-7055 Cisco OpenVuln
Cisco Secure Email CVE-2016-7054 Cisco OpenVuln
Cisco Secure Email CVE-2016-7053 Cisco OpenVuln
Cisco Prime Network Registrar CVE-2016-7055 Cisco OpenVuln
Cisco Prime Network Registrar CVE-2016-7054 Cisco OpenVuln
Cisco Prime Network Registrar CVE-2016-7053 Cisco OpenVuln
Cisco Prime Network CVE-2016-7055 Cisco OpenVuln
Cisco Prime Network CVE-2016-7054 Cisco OpenVuln
Cisco Prime Network CVE-2016-7053 Cisco OpenVuln
Cisco Prime IP Express CVE-2016-7055 Cisco OpenVuln
Cisco Prime IP Express CVE-2016-7054 Cisco OpenVuln
Cisco Prime IP Express CVE-2016-7053 Cisco OpenVuln
Cisco Plug-in for OpenFlow CVE-2016-7055 Cisco OpenVuln
Cisco Plug-in for OpenFlow CVE-2016-7054 Cisco OpenVuln
Cisco Plug-in for OpenFlow CVE-2016-7053 Cisco OpenVuln
Cisco ONS 15454 System Software CVE-2016-7055 Cisco OpenVuln
Cisco ONS 15454 System Software CVE-2016-7054 Cisco OpenVuln
Cisco ONS 15454 System Software CVE-2016-7053 Cisco OpenVuln
Cisco Network Analysis Module (NAM) Software CVE-2016-7055 Cisco OpenVuln
Cisco Network Analysis Module (NAM) Software CVE-2016-7054 Cisco OpenVuln
Cisco Network Analysis Module (NAM) Software CVE-2016-7053 Cisco OpenVuln
Cisco Jabber for Mac CVE-2016-7055 Cisco OpenVuln
Cisco Jabber for Mac CVE-2016-7054 Cisco OpenVuln
Cisco Jabber for Mac CVE-2016-7053 Cisco OpenVuln
Cisco Jabber Software Development Kit CVE-2016-7055 Cisco OpenVuln
Cisco Jabber Software Development Kit CVE-2016-7054 Cisco OpenVuln
Cisco Jabber Software Development Kit CVE-2016-7053 Cisco OpenVuln
Cisco Jabber IM for Android CVE-2016-7055 Cisco OpenVuln
Cisco Jabber IM for Android CVE-2016-7054 Cisco OpenVuln
Cisco Jabber IM for Android CVE-2016-7053 Cisco OpenVuln
Cisco Jabber CVE-2016-7055 Cisco OpenVuln
Cisco Jabber CVE-2016-7054 Cisco OpenVuln
Cisco Jabber CVE-2016-7053 Cisco OpenVuln
Cisco Identity Services Engine Software CVE-2016-7055 Cisco OpenVuln
Cisco Identity Services Engine Software CVE-2016-7054 Cisco OpenVuln
Cisco Identity Services Engine Software CVE-2016-7053 Cisco OpenVuln
Cisco IOS XR Software CVE-2016-7055 Cisco OpenVuln
Cisco IOS XR Software CVE-2016-7054 Cisco OpenVuln
Cisco IOS XR Software CVE-2016-7053 Cisco OpenVuln
Cisco IOS CVE-2016-7055 Cisco OpenVuln
Cisco IOS CVE-2016-7054 Cisco OpenVuln
Cisco IOS CVE-2016-7053 Cisco OpenVuln
Cisco Firepower System Software CVE-2016-7055 Cisco OpenVuln
Cisco Firepower System Software CVE-2016-7054 Cisco OpenVuln
Cisco Firepower System Software CVE-2016-7053 Cisco OpenVuln
Cisco Content Security Management Appliance (SMA) CVE-2016-7055 Cisco OpenVuln
Cisco Content Security Management Appliance (SMA) CVE-2016-7054 Cisco OpenVuln
Cisco Content Security Management Appliance (SMA) CVE-2016-7053 Cisco OpenVuln
Cisco Connected Grid Network Management System (CG-NMS) CVE-2016-7055 Cisco OpenVuln
Cisco Connected Grid Network Management System (CG-NMS) CVE-2016-7054 Cisco OpenVuln
Cisco Connected Grid Network Management System (CG-NMS) CVE-2016-7053 Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) CVE-2016-7055 Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) CVE-2016-7054 Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) CVE-2016-7053 Cisco OpenVuln