IBM Verify

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

View Only

Back to discussions

Expand all | Collapse all

TLS Robot Vulnerability on VA Console of ISVG Identity Manager (10.0.1.1)

1. TLS Robot Vulnerability on VA Console of ISVG Identity Manager (10.0.1.1)

Like
Gabriel Sanchez
Posted Tue July 25, 2023 06:59 AM

Reply
A DAST scan of the ISVG-IM VA console was performed using a Qualys solution, in which the following critical level finding was found: TLS ROBOT Vulnerability.

We have an ISVG - IM in version 10.0.1 with Fixpack 1, we consider that this vulnerability has to do with the cipher suites used by default by the VA. However, support still has no answer to this issue and by changing these suites, the vulnerability is still detected. Do you know how it could be remediated?

Thanks in advance

Regards

------------------------------
Gabriel Sanchez
------------------------------

IBM Verify

IBM Verify

TLS Robot Vulnerability on VA Console of ISVG Identity Manager (10.0.1.1)

1. TLS Robot Vulnerability on VA Console of ISVG Identity Manager (10.0.1.1)

Additional
Resources

Office

Quick Links

IBM Verify

IBM Verify

TLS Robot Vulnerability on VA Console of ISVG Identity Manager (10.0.1.1)

1. TLS Robot Vulnerability on VA Console of ISVG Identity Manager (10.0.1.1)

Additional Resources

Office

Quick Links

Additional
Resources