Description
"TLS-RSA cipher suites are not disabled in BigFix Compliance up to v2.0.5. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it."
References (1)
Core 1
Core References
Mitigation, Vendor Advisory x_refsource_misc
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0096977
Scores
CVSS v3
7.5
EPSS
0.0014
EPSS Percentile
33.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-327
Status
published
Products (1)
hcltech/bigfix_compliance
2.0 - 2.0.6
Published
Mar 04, 2022
Tracked Since
Feb 18, 2026