I am working as a full stack developer. Following vulnerability reported by our security team.
Environment - IIS 7, ASP.NET Web Pages, ASP.NET MVC, .NET framework 4.6
Any hint or resources to address this vulnerability ?
Vulnerability Description: Application's SSL/TLS has several flaws. Successful attacks on a security protocol that is designed to protect you, defies its purpose and jeopardizes the integrity, confidentiality and authenticity of information transmitted.
By performing SSL/TLS analysis, the following issues have been notified.
TLS_FALLBACK_SESV Support : NO
LUCKY13 - Potentially vulnerable
BREACH - Potentially vulnerable)
