{"containers":{"cna":{"affected":[{"product":"\"BigFix Compliance Server\"","vendor":"n/a","versions":[{"status":"affected","version":"\"BigFix Compliance Server 2.0 - 2.0.5\""}]}],"descriptions":[{"lang":"en","value":"\"TLS-RSA cipher suites are not disabled in BigFix Compliance up to v2.0.5. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.\""}],"problemTypes":[{"descriptions":[{"description":"\"Sensitive Data Exposure\"","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2022-03-04T21:18:06.000Z","orgId":"1e47fe04-f25f-42fa-b674-36de2c5e3cfc","shortName":"HCL"},"references":[{"tags":["x_refsource_MISC"],"url":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0096977"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"psirt@hcl.com","ID":"CVE-2021-27756","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"\"BigFix Compliance Server\"","version":{"version_data":[{"version_value":"\"BigFix Compliance Server 2.0 - 2.0.5\""}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"\"TLS-RSA cipher suites are not disabled in BigFix Compliance up to v2.0.5. If TLS 2.0 and secure ciphers are not enabled then an attacker can passively record traffic and later decrypt it.\""}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"\"Sensitive Data Exposure\""}]}]},"references":{"reference_data":[{"name":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0096977","refsource":"MISC","url":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0096977"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T21:26:10.871Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0096977"}]}]},"cveMetadata":{"assignerOrgId":"1e47fe04-f25f-42fa-b674-36de2c5e3cfc","assignerShortName":"HCL","cveId":"CVE-2021-27756","datePublished":"2022-03-04T21:18:06.000Z","dateReserved":"2021-02-26T00:00:00.000Z","dateUpdated":"2024-08-03T21:26:10.871Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}