Hi All,
We are facing the above vulnerability as subject in our web dispatcher system, earlier we were having week SSL cipher suites so get rid of those vulnerabilities by maintained parameter ssl/ciphersuite.
But this time we are having above vulnerability on below cipher suite.
TLS1_CK_DHE_RSA_WITH_3DES_EDE_CBC_SHA. (DHE key exchange uses 512 bit, recommends to use 2048 bit)
Solution:
Reconfigure the service to use a unique Diffie-Hellman moduli of 2048 bits or greater.
Is there any note from sap to generate 2048 bit key exchange. I have searched in sap forum/note but unfortunately did not find anything about this vulnerability.
Could you please help me to fix this vulnerability. Your help is greatly appreciated.
Thanks in advance.
Regards,
Jaswanth.