Palo Alto Networks Knowledgebase: Palo Alto Networks products not vulnerable to ROCA: Vulnerable RSA generation (CVE-2017-15361)
Palo Alto Networks products not vulnerable to ROCA: Vulnerable RSA generation (CVE-2017-15361)
Created On 08/05/19 19:58 PM - Last Updated 08/05/19 20:11 PM
On October 15th 2017, a security researcher announced a new vulnerability "ROCA: Vulnerable RSA generation"  affecting smartcards, security tokens and other secure hardware using chips manufactured by Infineon Technologies AG.
Palo Alto Networks does not use these affected chips in any products. As a result, the Palo Alto Networks platform is not vulnerable to the attack described in CVE-2017-15361 .