QID 38863 - Cryptographically Weak Key Exchange Size for WebLogic 12.2.1.4
A new vulnerability has surfaced regarding TLS and Key Exchange agreement (more specifically the key size.)The product “...xyz...” was flagged by having a weak DH (Diffie Hellman) key exchange or ECDH (Elliptic Curve) key exchange or RSA (Rivest – Shamir – Adleman) key exchange.How do we remediate this vulnerability to match the minimum requirements noted as (RSA & DHE=2048; ECDHE= P-256)Note: If your application is still using RSA key exchange, please ask the vendor for a removal or replacement with either ECDHE –P.256 or DHE 2048-bit in Oracle WebLogic 12.2.1.4 version