This page was not yet optimized for use on mobile
devices.
Cisco Catalyst 4506-E with Supervisor Cards (WS-X45-SUP7-E and WS-X45-Sup7L-E) and Line Cards (WS-X4748-RJ45-E and WS-X4748-RJ45V+E)
Known vulnerabilities detected
Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.Certificate #2748
Webpage information
Security policy
Symmetric Algorithms
AES, AES-, RC4, DES, Triple-DES, HMAC, HMAC-SHA-256, HMAC-SHA-512Asymmetric Algorithms
RSA 2048, Diffie-Hellman, DHHash functions
SHA-1, SHA-512, SHA-256, MD5Schemes
MACProtocols
SSH, SSHv2, TLS, IKE, IKEv2, IPsec, VPNRandomness
DRBGBlock cipher modes
ECB, CBC, GCMVendor
Cisco, Cisco Systems, Inc, Cisco SystemsSecurity level
Level 1, level 1, Level 3Side-channel analysis
SPAStandards
FIPS 140-2, FIPS PUB 140-2, FIPS 140, SP 800-57, SP 800-90A, RFC 6071File metadata
| Title | 0 |
|---|---|
| Author | Anthony Busciglio |
| Creation date | D:20160909142948-04'00' |
| Modification date | D:20160909142948-04'00' |
| Pages | 21 |
| Creator | Microsoft® Word 2013 |
| Producer | Microsoft® Word 2013 |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
Related CVEs
| ID | Links | Severity | CVSS Score | Published on | ||
|---|---|---|---|---|---|---|
| Base | Exploitability | Impact | ||||
| CVE-2004-0551 | MEDIUM | 5.0 | 2.9 | 06.08.2004 | ||
| CVE-2005-4258 | HIGH | 7.8 | 6.9 | 15.12.2005 | ||
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2748,
"dgst": "514070b1acaf47d0",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"RSA#1339",
"KBKDF#98",
"RSA#2083",
"Triple-DES#1575",
"CVL#877",
"HMAC#1622",
"RSA#1341",
"AES#2624",
"SHS#2200",
"DRBG#403",
"SHS#2198",
"AES#2057"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:cisco:catalyst_4506-e:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:catalyst_4506:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"3.7.0"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": {
"_type": "Set",
"elements": [
"CVE-2005-4258",
"CVE-2004-0551"
]
},
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"FF": {
"DH": {
"DH": 6,
"Diffie-Hellman": 12
}
},
"RSA": {
"RSA 2048": 6
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 3
},
"ECB": {
"ECB": 3
},
"GCM": {
"GCM": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 31,
"IKEv2": 8
},
"IPsec": {
"IPsec": 13
},
"SSH": {
"SSH": 19,
"SSHv2": 11
},
"TLS": {
"TLS": {
"TLS": 28
}
},
"VPN": {
"VPN": 5
}
},
"crypto_scheme": {
"MAC": {
"MAC": 1
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1": 1,
"#1339": 1,
"#1341": 1,
"#1575": 1,
"#1622": 1,
"#2057": 2,
"#2083": 1,
"#2198": 1,
"#2200": 1,
"#2624": 3,
"#403": 1,
"#877": 1,
"#98": 1
}
},
"fips_certlike": {
"Certlike": {
"#1339 DRBG": 1,
"#1575 SHS": 1,
"#1622 RSA": 1,
"#2083 RSA": 1,
"#2198 HMAC": 1,
"#2200 SHS": 1,
"#2624 AES": 1,
"#98 CVL": 1,
"AES #2057": 1,
"AES #2624": 1,
"AES (Cert. #2624": 1,
"AES 128": 1,
"AES 128/192/256": 1,
"AES CBC 128/256": 1,
"AES-CBC 256": 1,
"AES-GCM 128": 3,
"AES-GCM 256": 2,
"Diffie-Hellman 2048": 2,
"Diffie-Hellman 224": 1,
"HMAC-SHA-1": 2,
"HMAC-SHA-1 160": 4,
"HMAC-SHA-256": 2,
"HMAC-SHA-512": 2,
"HMAC-SHA1": 3,
"HMAC-SHA1 160": 1,
"RSA 2048": 6,
"SHA-1": 1,
"SHA-256": 1,
"SHA-512": 3
}
},
"fips_security_level": {
"Level": {
"Level 1": 5,
"Level 3": 1,
"level 1": 3
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 9
}
},
"SHA": {
"SHA1": {
"SHA-1": 1
},
"SHA2": {
"SHA-256": 1,
"SHA-512": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 28
}
},
"side_channel_analysis": {
"SCA": {
"SPA": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140": 1,
"FIPS 140-2": 20,
"FIPS PUB 140-2": 1
},
"NIST": {
"SP 800-57": 1,
"SP 800-90A": 8
},
"RFC": {
"RFC 6071": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 13,
"AES-": 1
},
"RC": {
"RC4": 3
}
},
"DES": {
"3DES": {
"Triple-DES": 5
},
"DES": {
"DES": 5
}
},
"constructions": {
"MAC": {
"HMAC": 8,
"HMAC-SHA-256": 1,
"HMAC-SHA-512": 1
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Cisco": {
"Cisco": 13,
"Cisco Systems": 2,
"Cisco Systems, Inc": 22
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "Anthony Busciglio",
"/CreationDate": "D:20160909142948-04\u002700\u0027",
"/Creator": "Microsoft\u00ae Word 2013",
"/ModDate": "D:20160909142948-04\u002700\u0027",
"/Producer": "Microsoft\u00ae Word 2013",
"/Title": "0",
"pdf_file_size_bytes": 604668,
"pdf_hyperlinks": {
"_type": "Set",
"elements": [
"http://www.cisco.com/",
"http://csrc.nist.gov/groups/STM/cmvp/index.html"
]
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 21
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "aaab2db547c9ba13c7c26246ff43a7b20f085683cb9ffedc84d2aa64eed6d8eb",
"policy_txt_hash": "32013b5706ac30eb884eda85eaf1e61e3fc8cb6df59ebc743f03af07f3a7c3e4"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertSept2016.pdf",
"date_sunset": null,
"description": "Catalyst 4500 Series switches are Cisco`s leading modular switches for borderless access and price/performance distribution deployments. They offer best-in-class investment protection with forward and backward compatibility and deep application visibility with Flexible NetFlow. The Catalyst 4500 series switch meets FIPS 140-2 overall Level 1 requirements as multi-chip standalone module. The switch includes cryptographic algorithms implemented in IOS-XE software as well as hardware ASICs. The module provides 802.1X-rev.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 2",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "IOS-XE 3.7.0E",
"historical_reason": "Moved to historical list in accordance with SP800-131A Revision 1 Transition (AES/TDES key wrapping)",
"hw_versions": "WS-C4506-E with Supervisor card [WS-X45-SUP7-E or WS-X45-SUP7L-E] and Line cards [WS-X4748-RJ45V+E and WS-X4748-RJ45-E]",
"level": 1,
"mentioned_certs": {},
"module_name": "Cisco Catalyst 4506-E with Supervisor Cards (WS-X45-SUP7-E and WS-X45-Sup7L-E) and Line Cards (WS-X4748-RJ45-E and WS-X4748-RJ45V+E)",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2016-09-16",
"lab": "Gossamer Security Solutions",
"validation_type": "Initial"
}
],
"vendor": "Cisco Systems, Inc.",
"vendor_url": "http://www.cisco.com"
}
}