Solved: We have VA scan on ESXI 6.0 u3. It reported vulner...

Mahesh_999 · ‎09-07-2018

We have VA scan on ESXI 6.0 u3. It reported vulnerability of "Return Of Bleichenbacher's Oracle Threat (ROBOT) Information Disclosure" and solution reported as below. Upgrade to a patched version of the software. Alternatively, disable RSA key exchanges.

Solution :

Upgrade to a patched version of the software. Alternatively, disable RSA key exchanges.

more information:

https://robotattack.org/

https://support.f5.com/csp/article/K21905460

https://support.citrix.com/article/CTX230238

please help us how to fix this vulnerability

SupreetK · ‎09-07-2018

Looks like ESXi is not affected by this vulnerability Please check the below KB -

VMware Knowledge Base

Cheers,

Supreet

View solution in original post

SupreetK · ‎09-07-2018

Looks like ESXi is not affected by this vulnerability Please check the below KB -

VMware Knowledge Base

Cheers,

Supreet

Mahesh_999 · ‎09-07-2018

Thank for your response. Is there any step to resolve both the conditions

SupreetK · ‎09-07-2018

Since it is not applicable to ESXi, I don't we need to worry about any resolution

Cheers,

Supreet

Mahesh_999 · ‎09-08-2018

Thanks 🙂

All

We have VA scan on ESXI 6.0 u3. It reported vulnerability of "Return Of Bleichenbacher's Oracle Threat (ROBOT) Information Disclosure"