3 matches found
CVE-2021-20566
IBM Resilient SOAR V38.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 199238...
CVE-2021-20566
CVE-2021-20566 concerns IBM Resilient OnPrem (IBM Security SOAR) where TLS1.2 ciphers not enabled for Perfect Forward Secrecy allow potential decryption of sensitive data if an attacker records traffic. The IBM security bulletin notes the vulnerability stems from weaker cryptographic algorithms; ...
Security Bulletin: Resilient supports TLS1.2 ciphers that are not enabled for Perfect Forward Secrecy (PFS) (CVE-2021-20566)
Summary Resilient supports TLS1.2 ciphers that are not enabled for Perfect Forward Secrecy PFS. Such ciphers could allow an attacker who has recorded encrypted traffic and later obtains the server's key to decrypt highly sensitive information. Vulnerability Details CVEID: CVE-2021-20566...