Don_Baker_24606NimbostratusMar 09, 2016Is version 11.5.3.0.0.163 Vulnerable to these attacks Beast/Poddle TLS/SSL Server is enabling the BEAST attack TLS/SSL Server is enabling the POODLE attack
1 ReplyReplies sorted by Most LikedSort ByMost LikedOldestNewestCharlesCSCirrusMar 09, 2016According to SOL13400, version 11.5.3 is vulnerable to BEAST but you can mitigate the issue by using only TLS1.1, TLS1.2, or RC4-SHA ciphers. According to SOL15702, 11.5.3 is not vulnerable to POODLE. You can also provide additional mitigation by preventing use of SSLv3 ciphers.
CharlesCSCirrusMar 09, 2016According to SOL13400, version 11.5.3 is vulnerable to BEAST but you can mitigate the issue by using only TLS1.1, TLS1.2, or RC4-SHA ciphers. According to SOL15702, 11.5.3 is not vulnerable to POODLE. You can also provide additional mitigation by preventing use of SSLv3 ciphers.
Recent DiscussionsRundeck ansible F5 errorsWhat is the meaning is 52% block in WAFrewrite Azure AD response for portal access via web portalAS3 Monitoring multiple ports selectivelyOpen Redirection MitigationSolved
Related ContentCoordinated Vulnerability Disclosure: A Balanced ApproachOWASP Automated Threats - OAT-014 Vulnerability ScanningReviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual ServerVulnerability CVE-2023-45648 in ApacheTomcatRe: Mitigation of OWASP API6: 2019 Mass Assignment vulnerability using F5 Distributed Cloud Platform