Palo Alto Networks products not vulnerable to ROCA: Vulnerable RSA generation (CVE-2017-15361)

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
L2 Linker
No ratings

On October 15th 2017, a security researcher announced a new vulnerability "ROCA: Vulnerable RSA generation" [1] affecting smartcards, security tokens and other secure hardware using chips manufactured by Infineon Technologies AG.

 

Palo Alto Networks does not use these affected chips in any products. As a result, the Palo Alto Networks platform is not vulnerable to the attack described in CVE-2017-15361 [2].

 

Reference

[1] -  https://crocs.fi.muni.cz/public/papers/rsa_ccs17

[2] - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15361

 

Rate this article:
  • 8275 Views
  • 0 comments
  • 0 Likes
Register or Sign-in
Contributors
Article Dashboard
Version history
Last Updated:
‎11-03-2017 04:58 PM
Updated by:
Retired Member