Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

SSL/TLS: Report Vulnerable Cipher Suites for HTTPS

Severity

Medium

Family

SSL and TLS

CVSSv2 Base

5.0

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Solution Type

Mitigation

Created

7 years ago

Modified

7 years ago

This routine reports all SSL/TLS cipher suites accepted by a service where attack vectors exists only on HTTPS services.

Insight

These rules are applied for the evaluation of the vulnerable cipher suites: - 64-bit block cipher 3DES vulnerable to the SWEET32 attack (CVE-2016-2183).

Affected Software

Services accepting vulnerable SSL/TLS cipher suites via HTTPS.

Solution

The configuration of this services should be changed so that it does not accept the listed cipher suites anymore. Please see the references for more resources supporting you with this task.

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

SSL/TLS: Report Vulnerable Cipher Suites for HTTPS

Severity

Family

CVSSv2 Base

CVSSv2 Vector

Solution Type

Created

Modified

Share

Insight

Affected Software

Solution

Common Vulnerabilities and Exposures (CVE)

References

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

SSL/TLS: Report Vulnerable Cipher Suites for HTTPS

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Solution Type

Solution Type

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Affected Software

Affected Software

Solution

Solution

Common Vulnerabilities and Exposures (CVE)

References