Tenable Vulnerability reports that the HCX appliances are supporting medium strength ciphers.
search cancel

Tenable Vulnerability reports that the HCX appliances are supporting medium strength ciphers.

book

Article ID: 407715

calendar_today

Updated On:

Products

VMware HCX

Issue/Introduction

 Tenable Vulnerability reports that the HCX appliances are supporting medium strength ciphers. Specifically on port 32032.

Environment

HCX versions at or below 4.11.0

Cause

Legacy block ciphers having block size of 64 bits are vulnerable to a practical collision attack when used in CBC mode.
protocol support cipher suites which use DES, 3DES, IDEA or RC2 as the symmetric encryption cipher are affected.

Resolution

Upgrade to 4.11.1, as the issue is addressed in that version.

Powered by Wolken Software