topic Re: CVE-2023-48795 isn't fixed in the 11.1.3-h2 as is claimed in the advisory in Next-Generation Firewall Discussions https://live.paloaltonetworks.com/t5/next-generation-firewall/cve-2023-48795-isn-t-fixed-in-the-11-1-3-h2-as-is-claimed-in-the/m-p/598788#M3805 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/177165">@Jose_Espinoza</a>&nbsp;<BR /><SPAN>Despite the upgrade to PAN-OS version 11.1.3-h2, the ciphers will remain visible. This is due to the OpenSSL upgrade, which has mitigated the vulnerabilities associated with these ciphers. However, for optimal security, it is still strongly advised to keep these ciphers disable within PAN-OS.</SPAN></P> Wed, 25 Sep 2024 19:48:53 GMT jpomachagua 2024-09-25T19:48:53Z CVE-2023-48795 isn't fixed in the 11.1.3-h2 as is claimed in the advisory https://live.paloaltonetworks.com/t5/next-generation-firewall/cve-2023-48795-isn-t-fixed-in-the-11-1-3-h2-as-is-claimed-in-the/m-p/598768#M3803 <P>CVE-2023-48795 isn't fixed in the 11.1.3 as is claimed in the advisory:</P> <P><A href="https://security.paloaltonetworks.com/CVE-2023-48795" target="_blank">https://security.paloaltonetworks.com/CVE-2023-48795</A></P> <P>our Cyber Team ran a scan and still our firewalls are showing the weak cypher , even if this is disable in the configurations profiles.</P> <P>&nbsp;</P> <P>Somebody knows if there is something else to get this fixed?</P> <P>&nbsp;</P> <P>cordially,</P> <P>Jose Espinoza</P> Wed, 25 Sep 2024 15:51:19 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/cve-2023-48795-isn-t-fixed-in-the-11-1-3-h2-as-is-claimed-in-the/m-p/598768#M3803 Jose_Espinoza 2024-09-25T15:51:19Z Re: CVE-2023-48795 isn't fixed in the 11.1.3-h2 as is claimed in the advisory https://live.paloaltonetworks.com/t5/next-generation-firewall/cve-2023-48795-isn-t-fixed-in-the-11-1-3-h2-as-is-claimed-in-the/m-p/598788#M3805 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/177165">@Jose_Espinoza</a>&nbsp;<BR /><SPAN>Despite the upgrade to PAN-OS version 11.1.3-h2, the ciphers will remain visible. This is due to the OpenSSL upgrade, which has mitigated the vulnerabilities associated with these ciphers. However, for optimal security, it is still strongly advised to keep these ciphers disable within PAN-OS.</SPAN></P> Wed, 25 Sep 2024 19:48:53 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/cve-2023-48795-isn-t-fixed-in-the-11-1-3-h2-as-is-claimed-in-the/m-p/598788#M3805 jpomachagua 2024-09-25T19:48:53Z