Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

S_Meulmeester's avatar
S_Meulmeester
Icon for Cirrus rankCirrus
Sep 11, 2019

Vulnerability SSL Medium Strength Cipher Suites Supported

From the PCI audit I get the following: Vulnerability SSL Medium Strength Cipher Suites Supported Currently the following is configured: list sys httpd sys httpd {     auth-pam-idle-timeout 2400 ...
big-ip
LTM
security
S_Meulmeester's avatar
S_Meulmeester
Icon for Cirrus rankCirrus
Oct 18, 2019

​Hi,

TLSv1.2+HIGH:!aNULL:!eNULL  didn't help, I know configured 

modify /sys httpd ssl-ciphersuite "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA384:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA:AES256-SHA:AES128-SHA256:AES256-SHA256"