Synopsis
The remote host allows SSL/TLS connections with one or more Diffie-Hellman moduli less than vãn or equal to tướng 1024 bits.Description
The remote host allows SSL/TLS connections with one or more Diffie-Hellman moduli less than vãn or equal to tướng 1024 bits. Through cryptanalysis, a third các buổi party may be able to tướng find the shared secret in a short amount of time (depending on modulus size and attacker resources). This may allow an attacker to tướng recover the plaintext or potentially violate the integrity of connections.Solution
Reconfigure the service to tướng use a unique Diffie-Hellman moduli of 2048 bits or greater.See Also
https://weakdh.org/
Plugin Details
Severity: Low
ID: 83875
File Name: ssl_logjam.nasl
Version: 1.41
Type: remote
Published: 5/28/2015
Updated: 9/11/2024
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
CVSS Score Rationale: An in depth analysis by tenable researchers revealed the access complexity to tướng be high.
VPR
Risk Factor: Medium
Score: 4.5
CVSS v2
Risk Factor: Low
Base Score: 2.6
Temporal Score: 1.9
Vector: CVSS2#AV:N/AC:H/Au:N/C:N/I:P/A:N
CVSS Score Source: manual
CVSS v3
Risk Factor: Low
Base Score: 3.7
Temporal Score: 3.2
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:openssl:openssl
Exploit Ease: No known exploits are available
Vulnerability Publication Date: 5/20/2015
Reference Information
CVE: CVE-2015-4000
BID: 74733