Palo Alto Networks products not vulnerable to ROCA: Vulnerable RSA generation (CVE-2017-15361)
cancel
Showing results for 
Search instead for 
Did you mean: 
L2 Linker
Did you find this article helpful? Yes No
No ratings

On October 15th 2017, a security researcher announced a new vulnerability "ROCA: Vulnerable RSA generation" [1] affecting smartcards, security tokens and other secure hardware using chips manufactured by Infineon Technologies AG.

 

Palo Alto Networks does not use these affected chips in any products. As a result, the Palo Alto Networks platform is not vulnerable to the attack described in CVE-2017-15361 [2].

 

Reference

[1] -  https://crocs.fi.muni.cz/public/papers/rsa_ccs17

[2] - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15361

 

Rate this article:
Register or Sign-in
Article Dashboard
Version history
Last update:
‎11-03-2017 04:58 PM
Updated by:
Retired Member
Contributors