Tag: TLS
Problems related to TLS, such as weak ciphers, configuration errors, or performance issues
| ID | Title | Description | Category | Technology | Tags |
|---|---|---|---|---|---|
| CRE-2025-0044 High Impact: 9/10 Mitigation: 1/10 | NGINX Config Uses Insecure TLS Ciphers | Detects NGINX configuration files that advertise obsolete and cryptographically weak ciphers (RC4-MD5, RC4-SHA, DES-CBC3-SHA). These ciphers are vulnerable to several well-known attacks—including BEAST, BAR-Mitzvah, Lucky-13, and statistical biases in RC4—placing any client–server communication at risk of interception or tampering. | Insecure Configuration | nginx | NginxWeak CiphersSecurityConfigurationTLSKnown IssuePublic |
| CRE-2025-0142 Medium Impact: 6/10 Mitigation: 5/10 | Supabase Self-Hosted: SSL Certificate Missing or Invalid Configuration | Detects when Supabase services fail due to missing, invalid, or improperly configured SSL certificates. This affects HTTPS endpoints, secure WebSocket connections, and can prevent clients from establishing secure connections to the self-hosted Supabase instance. | Configuration Problem | kong | SupabaseSslTLSCertificate VerificationSecurityConfigurationProxySelf-HostedSSL CertificatePublic |