hello encountered such a problem: management of information securityvulnerabilityfoundona production environment, namely:
SSLv3.0/TLSv1.0 Protocol Weak CBC Mode Vulnerability port 8443/tcp over SSL RC4-SHA ECDHE-RSA-DES-CBC3-SHA SSLv3
they offera solution:
This attack was identified in 2004 and later revisions of TLS protocol which contain a fix for this. If possible, upgrade to TLSv1.1 or TLSv1.2. If upgrading to TLSv1.1 or TLSv1.2 is not possible, then disabling CBC mode ciphers will remove the vulnerability. Setting your SSL server to prioritize RC4 ciphers mitigates this vulnerability.
asTLSupgradewe can not, it remainsdisabling CBC mode ciphers