AnsweredAssumed Answered

TLS CBC Incorrect Padding Abuse Vulnerability

Question asked by Mark Wang on Mar 30, 2020

CVE-2014-8730 and CVE-2015-3624 vulnerabilities have frequently appeared in Qualys recently. These vulnerabilities are related to TLS CBC Incorrect Padding Abuse in Netcaler, but I found that the result of Qualys test is timeout without data. Also, We did not use the vulnerable Netscaler version. The most strange thing is that these vulnerabilities often disappear after reappearing. Who can help me solve this problem? Thanks.