I have a few Polycom VSX 7000 units which are appearing with the security vulnerability “OpenSSL ASN.1 Parsing Vulnerabilities” (QID 38224) I understand the unit has embedded OS running Linux 2.4-2.6 could somebody please tell me if this is remediated in any s/w update if not remediated in this s/w version how can this be remediated? I've looked at release docs and can't find any refs to this issue.
Typically these vulnerabilities are a false positive. Be sure you are running the latest software for the VSX which is 126.96.36.199
If you still see this vulnerability with this software please report it to Polycom Support. We can then bring it to the attention of our security department. Please provide information on the scan tool that was used.