Unable to remove SSH cipher or hmac on CAS running 3.1.5.2.
search cancel

Unable to remove SSH cipher or hmac on CAS running 3.1.5.2.

book

Article ID: 278760

calendar_today

Updated On:

Products

CAS-VA ISG Content Analysis Content Analysis Software

Issue/Introduction

There is a vulnerability detected on CAS for weak SSH ciphers or hmacs.

CAS is running version 3.1.5.2.

 

Cause

CAS version 3.1.5.2 and prior does not have the option to remove the SSH ciphers or hmacs on the CLI.

The commands below are not supported on 3.1.5.2.

ssh ciphers

ssh hmacs

ssh key-exchange-algorithms

Resolution

The commands are only supported on version 3.1.6.0.

So the CAS would need to be upgraded to version 3.1.6.0 or later to have the option to remove the ciphers or hmacs.

Additional Information

This is also highlighted in the release notes for version 3.1.6.0.

Powered by Wolken Software