Multiple VIPs have the CBC, IDEA, DES & POODLE vulnerabilities and below are the details, need help in remidaiting them.

Question

Version: BIG-IP 11.4.1 Build 637.0 Hotfix HF3&nbsp;
Current Cipher String: DEFAULT:!RSA+RC4:!SSLv3:!DES:!COMPAT:!ECDHE:!EXPORT:!3DES&nbsp;
CBC Vulnerability details:
Negotiated with the following insecure cipher suites: TLS 1.0
ciphers: TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHATLS 1.1 ciphers:
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHATLS 1.2 ciphers:
TLS_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_RSA_WITH_AES_128_CBC_SHA256
TLS_RSA_WITH_AES_256_CBC_SHA256&nbsp;
Negotiated with the following insecure cipher suites: TLS 1.0
ciphers: TLS_RSA_WITH_3DES_EDE_CBC_SHA
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHATLS 1.1
ciphers: TLS_RSA_WITH_3DES_EDE_CBC_SHA
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHATLS 1.2
ciphers: TLS_RSA_WITH_3DES_EDE_CBC_SHA
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA&nbsp;

ianb · Answer

Have a look at this question which relates to the same issue, and has already been answered&nbsp;

Forum Discussion

Multiple VIPs have the CBC, IDEA, DES & POODLE vulnerabilities and below are the details, need help in remidaiting them.

1 Reply

Win Big in Vegas: The iRules Contest is back with $5k on the line at AppWorld 2026

Jürgen - February 2026 Featured Member

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Random TCP Resets from F5

Base64 decoding issue (JSON request)

F5 i-series Guests to r-series tenants migration

Block specific URL's in APM

Sizing calculation storage

Related Content

OpenSSH vulnerability

Mitigating Log4j Vulnerability using F5 BIG-IP

Using n8n To Orchestrate Multiple Agents

BYOEDR, Undetectable backdoor, WhoFi, Cyberattack to airline, and Clickjacking vulnerability

Coordinated Vulnerability Disclosure: A Balanced Approach

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS