Skip to main content Skip to search
Get a Free Trial
Blog

Patch Available for CVE-2014-8730 Padding Flaw

A10 Blog / Cyber Security / Patch Available for CVE-2014-8730 Padding Flaw
A10 PSIRT Team
A10 PSIRT Team
|
September 23, 2016

A10 Thunder ADC appliances running ACOS versions 2.7.2 P3 or earlier are susceptible to a TLS padding attack. The TLS padding flaw, identified as CVE-2014-8730, is a new variant of the POODLE vulnerability disclosed in October. The TLS padding flaw can be exploited remotely, allowing an attacker to decrypt sensitive data in the SSL connection.

Vulnerability Assessment

Affected Platforms: ADC

Affected Software Versions: 2.6.1-GR1, 2.7.x

Software Updates

A10 advises customers to apply software patches to mitigate this vulnerability. Patches for the CVE-2014-8730 padding flaw and the CVE-2014-3566 POODLE vulnerability and are available on the A10 Support Portal.

For more information, A10 customers may view the CVE-2014-8730 security advisory.

Share this post:

Share on LinkedIn
Categories:
Cyber Security
Previous Post
Next Post
A10 PSIRT Team
A10 PSIRT Team
|
September 23, 2016

Seeing is believing.
Schedule a live demo today.

Get a Product Demo

Related Resources

  1. Systems Strike Ukraine with Amplification and DrDoS Attacks
  2. 7 Strategies for CSO Cyber Security Survival
  3. Why are Government Agencies So Vulnerable to Hacking?