Insecure SSL

Insecure SSL

Overview of the Vulnerability

Insecure SSL refers to implementation flaws within the configuration of Secure Socket Layer (SSL)/Transport Layer Security (TLS), the security of the transport layer through encryption.

The insecure configuration of SSL within this application can lead to the connection between client and server being vulnerable. An attacker can use this weakness to execute a Denial of Service (DoS) attack, or Person-in-The-Middle (PiTM) the connection between the client and server to view or manipulate data in transit.

Business Impact

Insecure SSL can lead to reputational damage for the business due to a loss in confidence and trust by users who can see that the transport layer security is insecure.

Steps to Reproduce

1. Run a tool such as SSLScan, TestSLL, or SSLyze to scan the SSL/TLS configuration

2. Observe the results showing that the application is using the following insecure SSL:

{{value}}

Proof of Concept (PoC)

The screenshot below demonstrates the insecure SSL:

{{screenshot}}

Recommendation(s)

It is recommended that only strong protocols, such as TLS 1.3, and strong cipher suites are supported. The implementation of TLS should be thoroughly tested once it is set up to ensure a secure connection between client and server.

For more information, please see:

• https://github.com/ssllabs/research/wiki/SSL-and-TLS-Deployment-Best-Practices

• https://cheatsheetseries.owasp.org/cheatsheets/Transport_Layer_Protection_Cheat_Sheet.html

• https://owasp.org/www-project-web-security-testing-guide/stable/4-Web_Application_Security_Testing/09-Testing_for_Weak_Cryptography/01-Testing_for_Weak_Transport_Layer_Security