TLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2020-6407 | TLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: HCL
Published:
Updated: 2024-08-04T12:39:36.218Z
Reserved: 2020-06-17T00:00:00
Link: CVE-2020-14254

No data.

Status : Modified
Published: 2020-12-16T15:15:12.443
Modified: 2024-11-21T05:02:54.980
Link: CVE-2020-14254

No data.

No data.