Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHCLCVELIST:CVE-2021-27756
HistoryMar 04, 2022 - 9:18 p.m.

CVE-2021-27756

2022-03-0421:18:06
HCL
www.cve.org
3
tls-rsa cipher
bigfix compliance
v2.0.5
passive traffic recording
secure ciphers
decryption

EPSS

0.002

Percentile

51.4%

JSON

“TLS-RSA cipher suites are not disabled in BigFix Compliance up to v2.0.5. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.”

CNA Affected

[
  {
    "product": "\"BigFix Compliance Server\"",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "\"BigFix Compliance Server 2.0 - 2.0.5\""
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
nvd
nvd
CVE-2021-27756
2022-03-04 22:15:18
prion
prion
Code injection
2022-03-04 22:15:00
cve
cve
CVE-2021-27756
2022-03-04 22:15:18

EPSS

0.002

Percentile

51.4%

JSON
Related for CVELIST:CVE-2021-27756
nvd1prion1cve1