GFI Software

Welcome to the GFI Software community forum! For support please open a ticket from

Home » Product Feedback » Exinda Network Orchestrator Feedback » Upgrade OpenSSL Version
Upgrade OpenSSL Version [message #146207] Wed, 10 July 2019 16:54
ian.bugeja is currently offline  ian.bugeja
Messages: 666
Registered: March 2017
Location: Malta
Upgrade to OpenSSL version 1.0.1t / 1.0.2h or later.

For the Exinda appliance we previously requested this and were told it was coming.

OpenSSL AES-NI Padding Oracle MitM Information Disclosure

The remote host is affected by a man-in-the-middle (MitM) information disclosure vulnerability due to an error in the implementation of ciphersuites that use AES in CBC mode with HMAC-SHA1 or HMAC-SHA256.
The implementation is specially written to use the AES acceleration available in x86/amd64 processors (AES-NI). The error messages returned by the server allow allow a man-in-the-middle attacker to conduct a padding oracle attack, resulting in the ability to decrypt network traffic.

Ian Bugeja
GFI Software
Previous Topic: Ability to filter report by timings e.g. Report of work Hours 08:00 Hrs to 1600 Hrs
Next Topic: Database Stopped Alert
Goto Forum:

Current Time: Fri Jun 09 14:36:49 CEST 2023

Total time taken to generate the page: 0.01800 seconds