Vulnerability & Exploit Database

Back to search

TLS/SSL Server Supports SSLv3

Severity CVSS Published Added Modified
4 (AV:N/AC:M/Au:N/C:P/I:N/A:N) October 14, 2014 October 14, 2014 February 22, 2018

Available Exploits 

Description

The SSLv3 protocol and supported ciphers all suffer from serious vulnerabilities making this protocol unsafe to use.

The Payment Card Industry (PCI) Data Security Standard requires a minimum of TLS v1.1 and recommends TLS v1.2. In addition, FIPS 140-2 standard also requires a minimum of TLS v1.1 and recommends TLS v1.2.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

ssl-disable-insecure-protocols

Related Vulnerabilities