Active IQ Unified Manager Discussions

Balance 4.2P1 on Chrome: Server has a weak ephemeral Diffie-Hellman public key

IGORSTOJNOV

Hello all,

 

We're using Balace 4.2P1 for monitoring our vSphere/NetApp environment. Well, Chrome updated and now we're getting this:

 

Server has a weak ephemeral Diffie-Hellman public key

 

This issue has been detected and fixed in Unified Manager and Performance Manager.  Any ideas on when a suitable patch will be available for Balance?

 

So far we're up to 4.2P4 but none of these updates address the issue.

 

Regards,

Igor

3 REPLIES 3

kryan

OnCommand Balance has not yet been fixed for that CVE:

https://kb.netapp.com/support/index?page=content&id=9010039

 

IGORSTOJNOV

Yes I know, I've checkout out the available patches and updates to date (oct 2015, FFR)...

 

I was wondering if NetApp has a remedy in the works - or not?

 

kryan

When a fix is posted for a product the KB (Security Advisory) will be updated.  If you subscribe to that KB or the entire Product Security area you will be notificed when updates are published.

 

As far as I am aware, OnCommand Balance has not yet reached End of Support status and therefore will be fixed.  

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public