1 Rookie
•
8 Posts
0
1398
August 17th, 2021 05:00
IDRAC-7 with firmware 2.65.65.65 have multiple vulnerability
Hi,
I have IDRAC-7 with firmware 2.65.65.65 in our environment and there are multiple vulnerability has been reported for same.
Below are the vulnerability list:
Untrusted TLS/SSL server X.509 certificate (tls-untrusted-ca)
TLS/SSL Server Is Using Commonly Used Prime Numbers (tls-dh-primes)
TLS Server Supports TLS version 1.1 (tlsv1_1-enabled)
while i have enabled tls1.2 only with SSL encryption 256bit or higher in webserver option in IDRAC-UI
Can you please suggest solution to fix this vulnerability.
Regards,
Parichay Saxena
No Events found!
DELL-Shine K
4 Operator
•
3K Posts
0
August 17th, 2021 18:00
This is default SSL certificate on iDRAC and with this you will get Untrusted TLS/SSL server X.509 certificate warning. Can you upload a CA signed certificate and try the scan. Also try after disabling vConsole and vMedia to see the warning on TLS 1.1.
Parichay-Saxena
1 Rookie
•
8 Posts
0
August 26th, 2021 03:00
Thanks a lot Shine ,
Sorry for delay.
DELL-Shine K
4 Operator
•
3K Posts
0
August 17th, 2021 09:00
Did you have default SSL certificate on iDRAC? Can you try after uploading a CA signed certificate and check. For TLS 1.1, can you try scan after disabling vConsole and vMedia feature on iDRAC
Parichay-Saxena
1 Rookie
•
8 Posts
0
August 17th, 2021 17:00
Please find SSL cert information