search cancel

Vulnerability SMB Signing not required

book

Article ID: 254669

calendar_today

Updated On:

Products

DX NetOps CA Performance Management - Usage and Administration

Issue/Introduction

Vulnerability "SMB Signing not required CWE-254" reported on the servers

Environment

PM Release : 21.2.x/22.2.x

Cause

Successful exploitation can allow an unauthenticated, remote attacker can exploit this to conduct man-in-the-middle attacks against the SMB server.

Resolution

The identified vulnerability is related to the operating system servers. This does not affect the product.