cvedb.io
CVE-2018-6653
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2018-03-01T00:29:00.207 · Last modified 2026-06-17T02:02:08.907

Summary

comforte SWAP 1049 through 1069 and 20.0.0 through 21.5.3 (as used in SSLOBJ on HPE NonStop SSL T0910, and in the comforte SecurCS, SecurFTP, SecurLib/SSL-AT, and SecurTN products), after executing the RELOAD CERTIFICATES command, does not ensure that clients use a strong TLS cipher suite, which makes it easier for remote attackers to defeat intended cryptographic protection mechanisms by sniffing the network. This is fixed in 21.6.0.

Affected products

comforte — swap

Does this affect you?

Add your gear to cvedb and we'll alert you only when comforte ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.