SSL configuration contains multiple vulnerabilities LOGJAM (CVE-2015-4000)/LUCKY13 (CVE-2013-0169)

search cancel

SSL configuration contains multiple vulnerabilities LOGJAM (CVE-2015-4000)/LUCKY13 (CVE-2013-0169)

book

Article ID: 133685

calendar_today

Updated On:

Products

CA Infrastructure Management CA Performance Management - Usage and Administration

Issue/Introduction

SSL configuration contains multiple vulnerabilities LOGJAM (CVE-2015-4000)/LUCKY13 (CVE-2013-0169)

Environment

Release :

Component : CA Performance Center

Cause

Defect: DE440319

Resolution

Defect DE440319 has been resolved in 3.7.10 and later

Symptom: Running the testssl.sh script against Performance Center shows vulnerabilities for Secure Client-Initiated Renegotiation, LOGJAM (CVE-2015-4000), and LUCKY13 (CVE-2013-0169).
Resolution: Vulnerabilities for Secure Client-Initiated Renegotiation, LOGJAM (CVE-2015-4000), and LUCKY13 (CVE-2013-0169) have been resolved in Performance Center, and are no longer flagged by the testssl.sh script.
(3.7.10, DE440319)

Feedback

thumb_up Yes

thumb_down No