CVE-2020-14254
N/A
N/A
Summary
TLS-RSA cipher suites are not disabled in HCL BigFix Inventory up to v10.0.2. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | HCL BigFix Inventory | v9.x, v10.x | affected |
Weaknesses
- Security Misconfiguration
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.