Details
-
Bug
-
Status: Resolved (View Workflow)
-
Medium
-
Resolution: Fixed
-
Meridian-2021.1.3
-
None
-
Security Level: Default (Default Security Scheme)
-
Horizon 22 - Feb 2 - Feb 16, Horizon 22 - Feb 16 - Mar 2
-
NB
Description
Vulnerability Description: The SSL/TLS service uses Diffie-Hellman groups with insufficient strength i.e., key size less than 2048 bits.
Evidence: rpc12620.corp.ncr.com
Impact: An attacker might be able to decrypt the SSL/TLS communication offline.