Vulnerabilities / Insecure SSL protocol version 2 supported

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
↓

Severity	medium
Correlatable	sast
CWE Name	Insecure SSL protocol version 2 supported
CWE ID	CWE-327
CWE Score	5.9
Compliance	OWASP TOP10 -> A2 PCI-DSS -> 4.1, 6.5.4 ISO 27001 -> A.5.14, A.8.9, A.8.24 HIPAA -> 164.306(a), 164.312(c)(1), 164.312(e)(1)
CVSS	3.0
Attack Vector	Adjacent Network
Attack Complexity	High
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	High
Integrity Impact	Low
Availability Impact	None

Insecure SSL protocol version 2 supported