CVE-2021-27756
N/A
N/A
Summary
"TLS-RSA cipher suites are not disabled in BigFix Compliance up to v2.0.5. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it."
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | “BigFix Compliance Server” | "BigFix Compliance Server 2.0 - 2.0.5" | affected |
Weaknesses
- "Sensitive Data Exposure"
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.