• Security scanner has determined that weak cipher is in use when communicating over port 1167
  
  
• Flagged cipher is ECDHE-RSA-AES128-SHA256 and ECDHE-RSA-AES256-SHA384 complains about CBC mode. 

• When customer runs a scan for vulnerability, they might get description as "The remote host supports the use of SSL ciphers that operate in Cipher Block Chaining (CBC) mode. These cipher suites offer additional security over Electronic Codebook (ECB) mode but have the potential to leak information if used improperly."

VMware NSX

The issue is known and fixed in future release version of NSX 4.2.x.