TLS Version 1.1 Protocol Deprecated.txt - HĐ 1511/2023/HĐKT/CAT-ELCOM-VNPT (CAMERA HUẾ) - Hệ thống quản lý sự cố/feedback ELCOM

Feature #339 » TLS Version 1.1 Protocol Deprecated.txt

Tăng Bá Thiện , 05/02/2024 09:12 AM

 - TLS Version 1.1 Protocol Deprecated-
       Synopsis
       The remote service encrypts traffic using an older version of TLS.
       Description
       The remote service accepts connections encrypted using TLS 1.1. TLS 1.1 lacks support for current and recommended cipher suites. Ciphers that support encryption before MAC computation, and authenticated encryption modes such as GCM cannot be used with TLS 1.1
       As of March 31, 2020, Endpoints that are not enabled for TLS 1.2 and higher will no longer function properly with major web browsers and major vendors.
       See Also
       https://datatracker.ietf.org/doc/html/rfc8996
       http://www.nessus.org/u?c8ae820d
       Solution
       Enable support for TLS 1.2 and/or 1.3, and disable support for TLS 1.1.
       Risk Factor
       Medium
       CVSS v3.0 Base Score
 .5 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N)
       CVSS v2.0 Base Score
 .1 (CVSS2#AV:N/AC:H/Au:N/C:C/I:P/A:N)
       References
       XREF	CWE:327
       Plugin Information
       Published: 2022/04/04, Modified: 2023/04/19
       Plugin Output
       tcp/443/www
       TLSv1.1 is enabled and the server supports at least one cipher.

(3-3/5)