A firmware upgrade for this vulnerability will be available in December 2014. APC Digital IP KVMs (KVM1116P, KVM2116P, KVM2132P) are affected.As this product is termed End of Life, no updates will be made available. All versions of ISX Manager (ISXM) is affected.All users should verify this on the corresponding client to prevent any vulnerability. To avoid this vulnerability, the answer is to not use SSL v3.0 in the communication path. Any corresponding client should also use TLS or support TLS_FALLBACK_SCSV.Note: Additional, detailed information is available in knowledge base article ID FA238115 due to recent browser changes affecting SSLv3 in the wake of POODLE. All Network Management Card 1 and 2 (NMC1 and NMC2) applications are affected and any future releases of these applications will address this vulnerability.Please see knowledge base article ID FA240226 for more detail.
A patch that mitigates this issue is available in version 4.4.1. Please contact tech support for upgrade links for supported systems. Version 7.2.6 is just released and resolves this issue. Data Center Expert (DCE) v7.2.5 is affected.A patch for this vulnerability will be available at DCIM Support ( link) and in the released version v7.4.1. Data Center Operations (DCO) v7.4.0 is affected.Schneider Electric's IT Business has conducted a vulnerability assessment on the following platforms and found the status of the current shipping versions as follows: It is recommended that systems avoid using that fallback mechansim. This is commonly referred to as the "POODLE" (Padding Oracle On Downgraded Legacy Encryption) attack. SSL v3.0 has been found to be vulnerable to a padding-oracle attack when Cipher-block chaining (CBC) mode is used. Many modern TLS clients can fall back to version 3.0 of the SSL protocol for compatibility. According to this vulnerability notification, SSL v3.0 should not be used any longer. On 1, the GNU SSL 3.0 Protocol Vulnerability, also called the "POODLE" Vulnerability (CVE-2014-3566) was detected and published by several Cyber Security outlets. NetShelter Metered-by-Outlet with Switching Rack PDU NetShelter Shelving & Mounting Accessories Sensors / Cameras / Licenses / Accessories Uniflair Ceiling Mounted Split Room Cooling