Ssl Tls Server Accepts Null Cipher Suite

Description

This detector identifies SSL/TLS servers that accept the TLS_NULL_WITH_NULL_NULL cipher suite, which provides no encryption or authentication. This cipher suite offers no cryptographic protection, allowing attackers to intercept and modify communications in plaintext, completely undermining the security of HTTPS connections.

Weakness:

052 - Insecure encryption algorithm

Category: Information Collection

Detection Strategy

• The detector initiates a TLS 1.2 handshake with the target server offering only the TLS_NULL_WITH_NULL_NULL cipher suite

• A vulnerability is reported if the server accepts the connection and responds with the null cipher suite in the server hello message

• The detection confirms that the server is willing to establish unencrypted connections despite using SSL/TLS protocol

Free trial

Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.