Palo Alto Networks products not vulnerable to ROCA: Vulnerable RSA generation (CVE-2017-15361)

Palo Alto Networks products not vulnerable to ROCA: Vulnerable RSA generation (CVE-2017-15361)

0
Created On 09/26/18 19:12 PM - Last Modified 07/19/22 23:12 PM


Resolution


On October 15th 2017, a security researcher announced a new vulnerability "ROCA: Vulnerable RSA generation" [1] affecting smartcards, security tokens and other secure hardware using chips manufactured by Infineon Technologies AG.

 

Palo Alto Networks does not use these affected chips in any products. As a result, the Palo Alto Networks platform is not vulnerable to the attack described in CVE-2017-15361 [2].

 

Reference

[1] -  https://crocs.fi.muni.cz/public/papers/rsa_ccs17

[2] - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15361

 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm2wCAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail