Support Center
Crashtest Security
SSL / TLS Vulnerabilities
User Guides Crashtest Security Suite
User Guide English
User Guide Deutsch
Advanced User Guides
Crashtest Security Integrations
General Topics
SSL / TLS Vulnerabilities
Vulnerabilities requiring reconfiguration
Specific certificate vulnerabilities
Mitigated in latest versions
Injection Attacks
Fingerprinting
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
XML External Entity (XXE) Processing
Broken Authentication & Session Management
Deserialization
Fuzzer
Insecure Network Services
Back to home
Support Center
SSL / TLS Vulnerabilities
User Guides Crashtest Security Suite
User Guide English
User Guide Deutsch
Advanced User Guides
Crashtest Security Integrations
General Topics
SSL / TLS Vulnerabilities
Vulnerabilities requiring reconfiguration
Specific certificate vulnerabilities
Mitigated in latest versions
Injection Attacks
Fingerprinting
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
XML External Entity (XXE) Processing
Broken Authentication & Session Management
Deserialization
Fuzzer
Insecure Network Services
SSL / TLS Vulnerabilities
What are security misconfiguration security vulnerabilities and how do you fix them?
Vulnerabilities requiring reconfiguration
Harden TLS Session Resumption
Certificate Revocation
Configure Trusted Certificates
Enable HSTS
Enable missing SSL CAA record
Enable Secure Cookies
Secure TLS Configuration
Renew TLS Certificates
Prevent SSL LUCKY13
Prevent SSL CRIME
Prevent SSL BREACH
Enable TLS Encryption
Enable Perfect Forward Secrecy
Increase TLS Key Size
Disable deprecated SSL Protocol Versions
Configure SSL Cipher Order
Manage TLS Warning
Enable Security Headers
See more
Specific certificate vulnerabilities
Disable SSL RC4
Disable SSL Insecure Algorithm
Prevent Ticketbleed
Prevent SSL DROWN
Prevent SSL SWEET32
Prevent SSL ROBOT
Prevent SSL LOGJAM
Prevent SSL POODLE
Prevent SSL FREAK
Prevent SSL BEAST
See more
Mitigated in latest versions
Enable TLS_FALLBACK_SCSV
Secure SSL Renegotiation
Prevent CCS Injection
Prevent Heartbleed
Secure Client-Initiated SSL Renegotiation
See more