BugZero | Cisco BugID CSCvw84347 - Nexus 9000: HMAC-SHA1 MAC Algorithm is enabled by ...

OPERATIONAL DEFECT DATABASE

...

BugZero | Cisco BugID CSCvw84347 - Nexus 9000: HMAC-SHA1 MAC Algorithm is enabled by ...

Cisco - Defect ID: CSCvw84347

Nexus 9000: HMAC-SHA1 MAC Algorithm is enabled by default and cannot be easily disabled.

Cisco - Defect ID: CSCvw84347

Nexus 9000: HMAC-SHA1 MAC Algorithm is enabled by default and cannot be easily disabled.

Last updated on September 2nd, 2024

BugZero Risk Score
4.8 Medium

Overall: 4.8

Severity: 5.5

Lifecycle: 4.0

Popularity: 5.1

What is the BugZero Risk Score?

Cisco Integration

Learn more about where this data comes from

Cisco Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Description

Symptom

HMAC-SHA1 MAC Algorithm is enabled by default and cannot be easily disabled.

Conditions

All Nexus platforms and versions currently available.

Workaround

If HMAC-SHA1 must be disabled please contact Cisco TAC for instructions on how to change it.

Further Problem Description

There are currently no known vulnerabilities with HMAC-SHA1 and it does not need to be disabled. Some organizations with strong security postures may require it to be disabled regardless. *PSIRT Evaluation:* The Cisco PSIRT has evaluated this issue and determined that it does not have a security impact that requires PSIRT ownership or involvement. This issue will be addressed via normal resolution channels. If you believe that there is new information that would cause a change in the severity of this issue, please contact psirt@cisco.com for another evaluation. Additional information on Cisco's security vulnerability policy can be found at the following URL: https://tools.cisco.com/security/center/resources/security_vulnerability_policy.html

Change history

2024-09-02 Added: 9.3(6)

Top Cisco Defects

9.7Defect ID: CSCvd48893
Cisco IOS and IOS XE Software Cluster Management Protocol Remote Code Execution Vulnerability
9.7Defect ID: CSCvx82406
Memory leaks in IOS_PRIV_OPER_DB
9.7Defect ID: CSCuz46500
Fib_mgr process crash due to "not enough memory"
9.7Defect ID: CSCvg76186
Cisco Smart Install Remote Code Execution and Denial of Service Vulnerability
9.7Defect ID: CSCwj45822
Cisco ASA and FTD Software Remote Access VPN Brute Force Denial of Service Vulnerability

Cisco Integration

Learn more about where this data comes from

Cisco Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Cisco - Defect ID: CSCvw84347

Nexus 9000: HMAC-SHA1 MAC Algorithm is enabled by default and cannot be easily disabled.

Cisco - Defect ID: CSCvw84347

Nexus 9000: HMAC-SHA1 MAC Algorithm is enabled by default and cannot be easily disabled.

Last updated on September 2nd, 2024

BugZero Risk Score4.8 Medium

Bug Details

Symptom

Conditions

Workaround

Further Problem Description

Links

Top Cisco Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
4.8 Medium