Security vulnerability for SSL Version 2 and 3 protocol
Applies to
- Cluster Data ONTAP 8.2
- Cluster Data ONTAP 8.3
- SSL
Issue
The security vulnerability is flagged by the third party as follows:
The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws, including:
- An insecure padding scheme with CBC ciphers.
- Insecure session renegotiation and resumption schemes.
...
Solution :
Consult the application's documentation to disable SSL 2.0 and 3.0.
Use TLS 1.2 (with approved cipher suites) or higher instead.