Detections
Analytics

TLS Version 1.1 Protocol Detection

info Nessus Plugin ID 121010

Language:

Synopsis

The remote service encrypts traffic using an older version of TLS.

Description

The remote service accepts connections encrypted using TLS 1.1.
TLS 1.1 lacks support for current and recommended cipher suites.
Ciphers that support encryption before MAC computation, and authenticated encryption modes such as GCM cannot be used with TLS 1.1

As of March 31, 2020, Endpoints that are not enabled for TLS 1.2 and higher will no longer function properly with major web browsers and major vendors.

Solution

Enable support for TLS 1.2 and/or 1.3, and disable support for TLS 1.1.

See Also

https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00

http://www.nessus.org/u?c8ae820d

Plugin Details

Severity: Info

ID: 121010

File Name: tls11_detection.nasl

Version: 1.10

Type: remote

Published: 1/8/2019

Updated: 4/19/2023

Asset Inventory: true

Supported Sensors: Nessus

Vulnerability Information

Required KB Items: SSL/Supported

Reference Information

CWE: 327