Symantec VIP security vulnerabilities found for TLS/SSL ciphers with VIP Enteprise Gateway
search cancel

Symantec VIP security vulnerabilities found for TLS/SSL ciphers with VIP Enteprise Gateway

book

Article ID: 412574

calendar_today

Updated On:

Products

VIP Service

Issue/Introduction

The security vulnerabilities listed below may be found in VIP Enterprise Gateway: 

  • TLS/SSL Weak Message Authentication Code Cipher Suites
  • TLS/SSL Server Supports The Use of Static Key Ciphers

Environment

VIP Enterprise Gateway version 9.11.1 or lower

Resolution

Adding the below ciphers to the weakciphers.properties file will resolve these two issues:

  • TLS_RSA_WITH_AES_256_GCM_SHA384
  • TLS_RSA_WITH_AES_128_GCM_SHA256
  • TLS_RSA_WITH_AES_256_CBC_SHA256
  • TLS_RSA_WITH_AES_256_CBC_SHA
  • TLS_DHE_RSA_WITH_AES_256_CBC_SHA

*Note: Instructions for modifying the weakciphers.properties file can be found here:  https://knowledge.broadcom.com/external/article?articleNumber=150540

Powered by Wolken Software